PT-2020-12208 · Gnu · Grub2-Bhyve

Reno Robert

·

Published

2020-03-14

·

Updated

2020-03-19

·

CVE-2020-10566

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions grub2-bhyve versions prior to revision 525916 2020-02-12
Description The issue is related to the mishandling of font loading by a guest through a grub2.cfg file, leading to a buffer overflow.
Recommendations For versions prior to revision 525916 2020-02-12, update to a version after revision 525916 2020-02-12 to resolve the issue.

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-120

Related Identifiers

CVE-2020-10566

Affected Products

Grub2-Bhyve