]> git.ipfire.org Git - thirdparty/openembedded/openembedded-core.git/commit
projects / thirdparty / openembedded / openembedded-core.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: c9d612e) | patch
grub: Fix for CVE-2023-4692 and CVE-2023-4693
authorXiangyu Chen <xiangyu.chen@windriver.com>
Thu, 9 Nov 2023 04:35:29 +0000 (12:35 +0800)
committerRichard Purdie <richard.purdie@linuxfoundation.org>
Fri, 10 Nov 2023 17:44:15 +0000 (17:44 +0000)
commita8bc6f041599ce8da275c163c87f155a2f09369c
tree658bc286c3055948a7272c3e14d9f48adea6bd3btree | snapshot
parentc9d612e9f12c2bebcc77410943150f19aae5850acommit | diff
grub: Fix for CVE-2023-4692 and CVE-2023-4693

CVE: CVE-2023-4692

Crafted file system images can cause heap-based buffer
overflow and may allow arbitrary code execution and secure boot bypass.

Upstream-Status: Backport
[https://git.savannah.gnu.org/cgit/grub.git/commit/?id=43651027d24e62a7a463254165e1e46e42aecdea]

CVE: CVE-2023-4693

There an out-of-bounds read at fs/ntfs.c, a physically present attacker
may leverage that by presenting a specially crafted NTFS file system
image to read arbitrary memory locations. A successful attack may allow
sensitive data cached in memory or EFI variables values to be leaked
presenting a high Confidentiality risk.

Upstream-Status: Backport
[https://git.savannah.gnu.org/cgit/grub.git/commit/?id=0ed2458cc4eff6d9a9199527e2a0b6d445802f94]

Signed-off-by: Xiangyu Chen <xiangyu.chen@windriver.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
meta/recipes-bsp/grub/files/CVE-2023-4692.patch [new file with mode: 0644] blob
meta/recipes-bsp/grub/files/CVE-2023-4693.patch [new file with mode: 0644] blob
meta/recipes-bsp/grub/grub2.inc diff | blob | blame | history
Mirror of git://git.openembedded.org/openembedded-core