Out-of-bounds write when handling split HTTP headers
CVE-2022-28734

8.1HIGH

Key Information:

Vendor: Gnu Project
Status: Gnu Grub
Vendor: CVE Published:; 20 July 2023

Summary

An out-of-bounds write vulnerability exists in the GRUB2 bootloader when it processes split HTTP headers. This flaw is due to the misalignment of the internal data buffer pointer, resulting in potential memory corruption. An attacker can exploit this vulnerability through crafted HTTP requests, leading to unintended modifications in GRUB2's internal memory metadata. Such exploitation can compromise the stability and security of systems reliant on GRUB2 for boot functionality.

Affected Version(s)

GNU GRUB Linux 0 < 2.06-3

References

https://www.openwall.com/lists/oss-security/2022/06/07/5

mailing-list

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2...

issue-tracking

https://security.netapp.com/advisory/ntap-20230825-0002/

CVSS V3.1

Score:

8.1

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jul 20, 2023
Vulnerability Reserved
Apr 5, 2022

Credit

Daniel Axtens