A flaw was found in grub2 in versions prior to 2.06. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2021-03-03T16:44:26

Updated: 2024-08-03T17:30:07.623Z

Reserved: 2020-12-17T00:00:00

Link: CVE-2021-20225

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2021-03-03T17:15:11.973

Modified: 2023-11-07T03:29:00.960

Link: CVE-2021-20225

cve-icon Redhat

Severity : Moderate

Publid Date: 2021-03-02T18:00:00Z

Links: CVE-2021-20225 - Bugzilla