CVE-2019-14865
Description
A flaw was found in the grub2-set-bootflag utility of grub2. A local attacker could run this utility under resource pressure (for example by setting RLIMIT), causing grub2 configuration files to be truncated and leaving the system unbootable on subsequent reboots.
Risk Information
Base Score
5.5
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
0.038
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| (RHSA-2020:0335) grub2 security update grub2-common-2.02-78.el8_1.1.noarch.rpm | Linux |
| (RHSA-2020:0335) grub2 security update grub2-debugsource-2.02-78.el8_1.1.x86_64.rpm | Linux |
| (RHSA-2020:0335) grub2 security update grub2-efi-aa64-modules-2.02-78.el8_1.1.noarch.rpm | Linux |
| (RHSA-2020:0335) grub2 security update grub2-efi-ia32-2.02-78.el8_1.1.x86_64.rpm | Linux |
| (RHSA-2020:0335) grub2 security update grub2-efi-ia32-cdboot-2.02-78.el8_1.1.x86_64.rpm | Linux |
| (RHSA-2020:0335) grub2 security update grub2-efi-ia32-modules-2.02-78.el8_1.1.noarch.rpm | Linux |
| (RHSA-2020:0335) grub2 security update grub2-efi-x64-2.02-78.el8_1.1.x86_64.rpm | Linux |
| (RHSA-2020:0335) grub2 security update grub2-efi-x64-cdboot-2.02-78.el8_1.1.x86_64.rpm | Linux |
| (RHSA-2020:0335) grub2 security update grub2-efi-x64-modules-2.02-78.el8_1.1.noarch.rpm | Linux |
| (RHSA-2020:0335) grub2 security update grub2-pc-2.02-78.el8_1.1.x86_64.rpm | Linux |
| (RHSA-2020:0335) grub2 security update grub2-pc-modules-2.02-78.el8_1.1.noarch.rpm | Linux |
| (RHSA-2020:0335) grub2 security update grub2-ppc64le-modules-2.02-78.el8_1.1.noarch.rpm | Linux |
| (RHSA-2020:0335) grub2 security update grub2-tools-2.02-78.el8_1.1.x86_64.rpm | Linux |
| (RHSA-2020:0335) grub2 security update grub2-tools-efi-2.02-78.el8_1.1.x86_64.rpm | Linux |
| (RHSA-2020:0335) grub2 security update grub2-tools-extra-2.02-78.el8_1.1.x86_64.rpm | Linux |
| (RHSA-2020:0335) grub2 security update grub2-tools-minimal-2.02-78.el8_1.1.x86_64.rpm | Linux |
| (CESA-2020:0335) grub2 security update grub2-common-2.02-78.el8_1.1.noarch.rpm | Linux |
| (CESA-2020:0335) grub2 security update grub2-efi-aa64-modules-2.02-78.el8_1.1.noarch.rpm | Linux |
| (CESA-2020:0335) grub2 security update grub2-efi-ia32-2.02-78.el8_1.1.x86_64.rpm | Linux |
| (CESA-2020:0335) grub2 security update grub2-efi-ia32-cdboot-2.02-78.el8_1.1.x86_64.rpm | Linux |
| (CESA-2020:0335) grub2 security update grub2-efi-ia32-modules-2.02-78.el8_1.1.noarch.rpm | Linux |
| (CESA-2020:0335) grub2 security update grub2-efi-x64-2.02-78.el8_1.1.x86_64.rpm | Linux |
| (CESA-2020:0335) grub2 security update grub2-efi-x64-cdboot-2.02-78.el8_1.1.x86_64.rpm | Linux |
| (CESA-2020:0335) grub2 security update grub2-efi-x64-modules-2.02-78.el8_1.1.noarch.rpm | Linux |
| (CESA-2020:0335) grub2 security update grub2-pc-2.02-78.el8_1.1.x86_64.rpm | Linux |
| (CESA-2020:0335) grub2 security update grub2-pc-modules-2.02-78.el8_1.1.noarch.rpm | Linux |
| (CESA-2020:0335) grub2 security update grub2-ppc64le-modules-2.02-78.el8_1.1.noarch.rpm | Linux |
| (CESA-2020:0335) grub2 security update grub2-tools-2.02-78.el8_1.1.x86_64.rpm | Linux |
| (CESA-2020:0335) grub2 security update grub2-tools-efi-2.02-78.el8_1.1.x86_64.rpm | Linux |
| (CESA-2020:0335) grub2 security update grub2-tools-extra-2.02-78.el8_1.1.x86_64.rpm | Linux |
| (CESA-2020:0335) grub2 security update grub2-tools-minimal-2.02-78.el8_1.1.x86_64.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234