PT-2023-8569 · Grub2+10 · Grub2+10

Chris Coulson

Published

2022-06-07

Updated

2024-09-05

CVE-2022-28736

CVSS v2.0

6.8

Medium

Vector

AV:L/AC:L/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions GRUB2 (affected versions not specified)

Description The issue is related to a use-after-free vulnerability in the grub cmd chainloader() function. This function is used to boot operating systems that do not support multiboot and do not have direct support from GRUB2. When the chainloader command is executed more than once, the vulnerability is triggered. If an attacker can control GRUB2's memory allocation pattern, sensitive data may be exposed, and arbitrary code execution can be achieved.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

ALSA-2022:5095

ALSA-2022:5099

ALT-PU-2023-1427

ALT-PU-2023-6074

ALT-PU-2024-11222

AZL-27554

AZL-34791

BDU:2024-01199

CESA-2022_5095

CVE-2022-28736

OESA-2022-1734

OPENSUSE-SU-2022_2035-1

OPENSUSE-SU-2022_2064-1

OPENSUSE-SU-2024:12137-1

RHSA-2022:5095

RHSA-2022:5096

RHSA-2022:5098

RHSA-2022:5099

RHSA-2022:5100

RHSA-2022_5095

RHSA-2022_5099

RLSA-2022:5095

RLSA-2022:5099

SUSE-SU-2022:2035-1

SUSE-SU-2022:2036-1

SUSE-SU-2022:2037-1

SUSE-SU-2022:2038-1

SUSE-SU-2022:2039-1

SUSE-SU-2022:2041-1

SUSE-SU-2022:2064-1

SUSE-SU-2022:2073-1

SUSE-SU-2022:2074-1

USN-6355-1

Affected Products

Alt Linux

Almalinux

Astra Linux

Centos

Grub2

Linuxmint

Red Hat

Red Os

Rocky Linux

Suse

Ubuntu

PT-2023-8569 · Grub2+10 · Grub2+10

CVE-2022-28736

Weakness Enumeration

Related Identifiers

Affected Products

References · 128