]> git.ipfire.org Git - thirdparty/grub.git/commit
projects / thirdparty / grub.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 4abac0a) | patch
kern/rescue_reader: Block the rescue mode until the CLI authentication
authorMaxim Suhanov <dfirblog@gmail.com>
Fri, 28 Feb 2025 14:00:53 +0000 (17:00 +0300)
committerDaniel Kiper <daniel.kiper@oracle.com>
Tue, 6 May 2025 15:13:00 +0000 (17:13 +0200)
commitc448f511e74cb7c776b314fcb7943f98d3f22b6d
tree3891daf9f259c529242df99f7df6bd636ba90f8etree | snapshot
parent4abac0ad5a7914dd3cdfff08aaac06588bf98d80commit | diff
kern/rescue_reader: Block the rescue mode until the CLI authentication

This further mitigates potential misuse of the CLI after the
root device has been successfully unlocked via TPM.

Fixes: CVE-2025-4382
Signed-off-by: Maxim Suhanov <dfirblog@gmail.com>
Reviewed-by: Daniel Kiper <daniel.kiper@oracle.com>
grub-core/kern/rescue_reader.c diff | blob | blame | history
Mirror of https://git.savannah.gnu.org/git/grub.git