Home

CVE-2015-8370

Description

Multiple integer underflows in Grub2 1.98 through 2.02 allow physically proximate attackers to bypass authentication, obtain sensitive information, or cause a denial of service (disk corruption) via backspace characters in the (1) grub_username_get function in grub-core/normal/auth.c or the (2) grub_password_get function in lib/crypto.c, which trigger an Off-by-two or Out of bounds overwrite memory error.

Risk Information

Base Score
7.4
MODERATE
Vector
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
3.054

Associated Vulnerability

VulnerabilityOS Platform
GRand Unified Bootloader (USN-2836-1) grub2-common_1.99-21ubuntu3.19_i386.debLinux
GRand Unified Bootloader (USN-2836-1) grub2-common_1.99-21ubuntu3.19_amd64.debLinux
GRand Unified Bootloader (USN-2836-1) grub2-common_2.02~beta2-9ubuntu1.6_i386.debLinux
GRand Unified Bootloader (USN-2836-1) grub2-common_2.02~beta2-9ubuntu1.6_amd64.debLinux
GRand Unified Bootloader (USN-2836-1) grub2-common_2.02~beta2-29_i386.debLinux
GRand Unified Bootloader (USN-2836-1) grub2-common_2.02~beta2-29_amd64.debLinux
grub2 security update(DSA-3421-1) grub2_1.99-27+deb7u3_i386.debLinux
grub2 security update(DSA-3421-1) grub2_2.02~beta2-22+deb8u1_i386.debLinux
grub2 security update(DSA-3421-1) grub2_2.02~beta2-22+deb8u1_amd64.debLinux
(RHSA-2015:2623) Moderate: grub2 security and bug fix update grub2-2.02-0.33.el7_2.x86_64.rpmLinux
(RHSA-2015:2623) Moderate: grub2 security and bug fix update grub2-efi-2.02-0.33.el7_2.x86_64.rpmLinux
(RHSA-2015:2623) Moderate: grub2 security and bug fix update grub2-efi-modules-2.02-0.33.el7_2.x86_64.rpmLinux
(RHSA-2015:2623) Moderate: grub2 security and bug fix update grub2-tools-2.02-0.33.el7_2.x86_64.rpmLinux
SUSE-SU-2015:2385-1(SUSE Linux Enterprise Desktop 11-SP4 ) grub2-x86_64-efi-2.00-0.54.2.x86_64.rpmLinux
SUSE-SU-2015:2385-1(SUSE Linux Enterprise Desktop 11-SP4 ) grub2-x86_64-xen-2.00-0.54.2.x86_64.rpmLinux
SUSE-SU-2015:2386-1(SUSE Linux Enterprise Desktop 11-SP3 ) grub2-x86_64-efi-2.00-0.49.2.x86_64.rpmLinux
SUSE-SU-2015:2386-1(SUSE Linux Enterprise Desktop 11-SP3 ) grub2-x86_64-xen-2.00-0.49.2.x86_64.rpmLinux
SUSE-SU-2015:2387-1(SUSE Linux Enterprise Desktop 12-SP1 ) grub2-2.02~beta2-73.3.x86_64.rpmLinux
SUSE-SU-2015:2387-1(SUSE Linux Enterprise Desktop 12-SP1 ) grub2-debuginfo-2.02~beta2-73.3.x86_64.rpmLinux
SUSE-SU-2015:2387-1(SUSE Linux Enterprise Desktop 12-SP1 ) grub2-i386-pc-2.02~beta2-73.3.x86_64.rpmLinux
SUSE-SU-2015:2387-1(SUSE Linux Enterprise Desktop 12-SP1 ) grub2-snapper-plugin-2.02~beta2-73.3.noarch.rpmLinux
SUSE-SU-2015:2387-1(SUSE Linux Enterprise Desktop 12-SP1 ) grub2-x86_64-efi-2.02~beta2-73.3.x86_64.rpmLinux
SUSE-SU-2015:2387-1(SUSE Linux Enterprise Desktop 12-SP1 ) grub2-x86_64-xen-2.02~beta2-73.3.x86_64.rpmLinux
SUSE-SU-2015:2399-1(SUSE Linux Enterprise Desktop 12 ) grub2-2.02~beta2-56.9.4.x86_64.rpmLinux
SUSE-SU-2015:2399-1(SUSE Linux Enterprise Desktop 12 ) grub2-debuginfo-2.02~beta2-56.9.4.x86_64.rpmLinux
SUSE-SU-2015:2399-1(SUSE Linux Enterprise Desktop 12 ) grub2-i386-pc-2.02~beta2-56.9.4.x86_64.rpmLinux
SUSE-SU-2015:2399-1(SUSE Linux Enterprise Desktop 12 ) grub2-snapper-plugin-2.02~beta2-56.9.4.noarch.rpmLinux
SUSE-SU-2015:2399-1(SUSE Linux Enterprise Desktop 12 ) grub2-x86_64-efi-2.02~beta2-56.9.4.x86_64.rpmLinux
SUSE-SU-2015:2399-1(SUSE Linux Enterprise Desktop 12 ) grub2-x86_64-xen-2.02~beta2-56.9.4.x86_64.rpmLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234