vulnerability
SUSE: CVE-2020-14308: SUSE Linux Security Advisory
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 6 | (AV:L/AC:M/Au:M/C:C/I:C/A:C) | Jul 29, 2020 | Jul 30, 2020 | Jan 28, 2025 |
Severity
6
CVSS
(AV:L/AC:M/Au:M/C:C/I:C/A:C)
Published
Jul 29, 2020
Added
Jul 30, 2020
Modified
Jan 28, 2025
Description
In grub2 versions before 2.06 the grub memory allocator doesn't check for possible arithmetic overflows on the requested allocation size. This leads the function to return invalid memory allocations which can be further used to cause possible integrity, confidentiality and availability impacts during the boot process.
Solution(s)
suse-upgrade-grub2suse-upgrade-grub2-arm64-efisuse-upgrade-grub2-branding-upstreamsuse-upgrade-grub2-i386-efisuse-upgrade-grub2-i386-efi-debugsuse-upgrade-grub2-i386-pcsuse-upgrade-grub2-i386-pc-debugsuse-upgrade-grub2-i386-xensuse-upgrade-grub2-powerpc-ieee1275suse-upgrade-grub2-s390x-emususe-upgrade-grub2-snapper-pluginsuse-upgrade-grub2-systemd-sleep-pluginsuse-upgrade-grub2-x86_64-efisuse-upgrade-grub2-x86_64-efi-debugsuse-upgrade-grub2-x86_64-xen
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.