PT-2020-6586 · Grub2+10 · Grub2+10

Published

2020-09-16

·

Updated

2024-06-15

·

CVE-2020-25632

CVSS v3.1

8.2

High

VectorAV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions grub2 versions prior to 2.06
Description A flaw was found in the rmmod implementation of grub2, allowing the unloading of a module used as a dependency without checking if any other dependent module is still loaded, leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
Recommendations For versions prior to 2.06, update to version 2.06 or later to resolve the issue. As a temporary workaround, consider restricting the use of the rmmod command to minimize the risk of exploitation.

Exploit

Fix

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

ALSA-2021:1734
ALT-PU-2021-1969
ALT-PU-2021-3464
AZL-6461
BDU:2022-00313
CESA-2021_0696
CESA-2021_1734
CESA-2021_2566
CVE-2020-25632
DSA-4867-1
MGASA-2021-0315
OESA-2021-1095
OPENSUSE-SU-2021:0462-1
OPENSUSE-SU-2021_0462-1
OPENSUSE-SU-2024:10824-1
RHSA-2021:0696
RHSA-2021:0697
RHSA-2021:0698
RHSA-2021:0699
RHSA-2021:0700
RHSA-2021:0701
RHSA-2021:0702
RHSA-2021:0703
RHSA-2021:0704
RHSA-2021:1734
RHSA-2021:2566
RHSA-2021:2790
RHSA-2021:3675
RHSA-2021_0696
RHSA-2021_0699
RHSA-2021_1734
RHSA-2021_2566
RLSA-2021:1734
RLSA-2021:2566
SUSE-SU-2021:0679-1
SUSE-SU-2021:0681-1
SUSE-SU-2021:0682-1
SUSE-SU-2021:0683-1
SUSE-SU-2021:0684-1
SUSE-SU-2021:0685-1
SUSE-SU-2021:14659-1
SUSE-SU-2021_14659-1
USN-4992-1

Affected Products

Alt Linux
Almalinux
Astra Linux
Centos
Linuxmint
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu
Grub2