vulnerability
Huawei EulerOS: CVE-2024-1048: grub2 security update
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 2 | (AV:L/AC:L/Au:S/C:N/I:N/A:P) | Feb 6, 2024 | May 13, 2024 | Apr 1, 2026 |
Severity
2
CVSS
(AV:L/AC:L/Au:S/C:N/I:N/A:P)
Published
Feb 6, 2024
Added
May 13, 2024
Modified
Apr 1, 2026
Description
A flaw was found in the grub2-set-bootflag utility of grub2. After the fix of CVE-2019-14865, grub2-set-bootflag will create a temporary file with the new grubenv content and rename it to the original grubenv file. If the program is killed before the rename operation, the temporary file will not be removed and may fill the filesystem when invoked multiple times, resulting in a filesystem out of free inodes or blocks.
Solutions
huawei-euleros-2_0_sp10-upgrade-grub2-commonhuawei-euleros-2_0_sp10-upgrade-grub2-efi-x64huawei-euleros-2_0_sp10-upgrade-grub2-efi-x64-moduleshuawei-euleros-2_0_sp10-upgrade-grub2-pchuawei-euleros-2_0_sp10-upgrade-grub2-pc-moduleshuawei-euleros-2_0_sp10-upgrade-grub2-toolshuawei-euleros-2_0_sp10-upgrade-grub2-tools-efihuawei-euleros-2_0_sp10-upgrade-grub2-tools-extrahuawei-euleros-2_0_sp10-upgrade-grub2-tools-minimal
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.