Out-of-bounds write in grub

#VU69394 Out-of-bounds write in grub

Cybersecurity Help s.r.o.

Published: 2022-11-16 | Updated: 2023-10-05

Vulnerability identifier: #VU69394

Vulnerability risk: Low

CVSSv3.1: 6.6 [CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2022-2601

CWE-ID: CWE-787

Exploitation vector: Local

Exploit availability: No

Vulnerable software:
grub
Universal components / Libraries / Libraries used by multiple products

Vendor: GNU

Description

The vulnerability allows an attacker to bypass implemented security restrictions.

The vulnerability exists due to a boundary error within the grub_font_construct_glyph() function when handling pf2 font. An attacker with physical access to the affected system can trigger an out-of-bounds write and bypass secure boot restrictions.

Mitigation
Install update from vendor's website.

Vulnerable software versions

grub: 2.00 - 2.06

External links
http://bugzilla.redhat.com/show_bug.cgi?id=2112975

Q & A

Can this vulnerability be exploited remotely?

No. The attacker should have physical access to the system in order to successfully exploit this vulnerability.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in Oracle SD-WAN Edge

Out-of-bounds write in IBM Security Guardium

Amazon Linux AMI update for grub2

Red Hat Enterprise Linux 7 update for grub2

Gentoo update for GRUB

Multiple vulnerabilities in IBM Spectrum Protect Plus

Multiple vulnerabilities in Dell Data Protection Central

Multiple vulnerabilities in Dell EMC SRM and Dell EMC Storage Monitoring and Reporting (SMR)

Multiple vulnerabilities in Dell NetWorker vProxy

Multiple vulnerabilities in IBM Watson Assistant for IBM Cloud Pak for Data