- EPSS 0.48%
- Veröffentlicht 31.07.2020 22:15:11
- Zuletzt bearbeitet 21.11.2024 05:02:58
There is an issue on grub2 before version 2.06 at function read_section_as_string(). It expects a font name to be at max UINT32_MAX - 1 length in bytes but it doesn't verify it before proceed with buffer allocation to read the value from the font val...
- EPSS 0.47%
- Veröffentlicht 31.07.2020 22:15:11
- Zuletzt bearbeitet 21.11.2024 05:02:58
There is an issue with grub2 before version 2.06 while handling symlink on ext filesystems. A filesystem containing a symbolic link with an inode size of UINT32_MAX causes an arithmetic overflow leading to a zero-sized memory allocation with subseque...
CVE-2020-16166
- EPSS 5.27%
- Veröffentlicht 30.07.2020 21:15:11
- Zuletzt bearbeitet 21.11.2024 05:06:53
The Linux kernel through 5.7.11 allows remote attackers to make observations that help to obtain sensitive information about the internal state of the network RNG, aka CID-f227e3ec3b5c. This is related to drivers/char/random.c and kernel/time/timer.c...
CVE-2020-16135
- EPSS 4.11%
- Veröffentlicht 29.07.2020 21:15:13
- Zuletzt bearbeitet 21.11.2024 05:06:49
libssh 0.9.4 has a NULL pointer dereference in tftpserver.c if ssh_buffer_new returns NULL.
CVE-2020-15705
- EPSS 1.43%
- Veröffentlicht 29.07.2020 18:15:14
- Zuletzt bearbeitet 21.11.2024 05:06:03
GRUB2 fails to validate kernel signature when booted directly without shim, allowing secure boot to be bypassed. This only affects systems where the kernel signing certificate has been imported directly into the secure boot database and the GRUB imag...
CVE-2020-15706
- EPSS 0.98%
- Veröffentlicht 29.07.2020 18:15:14
- Zuletzt bearbeitet 21.11.2024 05:06:03
GRUB2 contains a race condition in grub_script_function_create() leading to a use-after-free vulnerability which can be triggered by redefining a function whilst the same function is already executing, leading to arbitrary code execution and secure b...
CVE-2020-15707
- EPSS 1.59%
- Veröffentlicht 29.07.2020 18:15:14
- Zuletzt bearbeitet 21.11.2024 05:06:04
Integer overflows were discovered in the functions grub_cmd_initrd and grub_initrd_init in the efilinux component of GRUB2, as shipped in Debian, Red Hat, and Ubuntu (the functionality is not included in GRUB2 upstream), leading to a heap-based buffe...
CVE-2020-11933
- EPSS 0.22%
- Veröffentlicht 29.07.2020 17:15:12
- Zuletzt bearbeitet 21.11.2024 04:58:56
cloud-init as managed by snapd on Ubuntu Core 16 and Ubuntu Core 18 devices was run without restrictions on every boot, which a physical attacker could exploit by crafting cloud-init user-data/meta-data via external media to perform arbitrary changes...
CVE-2020-11934
- EPSS 0.37%
- Veröffentlicht 29.07.2020 17:15:12
- Zuletzt bearbeitet 21.11.2024 04:58:56
It was discovered that snapctl user-open allowed altering the $XDG_DATA_DIRS environment variable when calling the system xdg-open. OpenURL() in usersession/userd/launcher.go would alter $XDG_DATA_DIRS to append a path to a directory controlled by th...
CVE-2020-15863
- EPSS 0.45%
- Veröffentlicht 28.07.2020 16:15:12
- Zuletzt bearbeitet 21.11.2024 05:06:20
hw/net/xgmac.c in the XGMAC Ethernet controller in QEMU before 07-20-2020 has a buffer overflow. This occurs during packet transmission and affects the highbank and midway emulated machines. A guest user or process could use this flaw to crash the QE...