Integer Overflow Vulnerability in GRUB2 Affecting Red Hat Products
CVE-2024-45776

6.7MEDIUM

Key Information:

Vendor: Red Hat
Status: Red Hat Enterprise Linux 7; Red Hat Enterprise Linux 8; Red Hat Enterprise Linux 9; Red Hat Openshift Container Platform 4
Vendor: CVE Published:; 18 February 2025

Summary

In the GRUB2 bootloader, a flaw exists within the grub_mofile_open() function, which does not properly validate the integer size when processing .mo language files. This oversight can result in an overflow during the allocation of internal buffers. An attacker could exploit this vulnerability by crafting a malicious .mo file, potentially allowing for out-of-bound read and write operations. Such exploitation could lead to the leakage of sensitive data or the corruption of critical data, putting secure boot mechanisms at risk.

References

https://access.redhat.com/security/cve/CVE-2024-45776

vdb-entryx_refsource_REDHAT

https://bugzilla.redhat.com/show_bug.cgi?id=2339182

issue-trackingx_refsource_REDHAT

CVSS V3.1

Score:

6.7

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Feb 18, 2025
Vulnerability Reserved
Sep 8, 2024