Vulnerability Description
A buffer overflow was found in grub_font_construct_glyph(). A malicious crafted pf2 font can lead to an overflow when calculating the max_glyph_size value, allocating a smaller than needed buffer for the glyph, this further leads to a buffer overflow and a heap based out-of-bounds write. An attacker may use this vulnerability to circumvent the secure boot mechanism.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Gnu | Grub2 | <= 2.06 |
| Fedoraproject | Fedora | 37 |
| Redhat | Enterprise Linux Eus | 9.0 |
| Redhat | Enterprise Linux For Power Little Endian Eus | 9.0 |
| Redhat | Enterprise Linux Server Aus | 8.2 |
| Redhat | Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions | 8.1 |
| Redhat | Enterprise Linux Server Tus | 8.2 |
| Redhat | Enterprise Linux Server Update Services For Sap Solutions | 8.1 |
Related Weaknesses (CWE)
References
- https://bugzilla.redhat.com/show_bug.cgi?id=2112975#c0Issue TrackingThird Party Advisory
- https://security.gentoo.org/glsa/202311-14
- https://security.netapp.com/advisory/ntap-20230203-0004/
- https://arstechnica.com/security/2024/08/a-patch-microsoft-spent-2-years-prepari
- https://bugzilla.redhat.com/show_bug.cgi?id=2112975#c0Issue TrackingThird Party Advisory
- https://security.gentoo.org/glsa/202311-14
- https://security.netapp.com/advisory/ntap-20230203-0004/
FAQ
What is CVE-2022-2601?
CVE-2022-2601 is a vulnerability with a CVSS score of 8.6 (HIGH). A buffer overflow was found in grub_font_construct_glyph(). A malicious crafted pf2 font can lead to an overflow when calculating the max_glyph_size value, allocating a smaller than needed buffer for ...
How severe is CVE-2022-2601?
CVE-2022-2601 has been rated HIGH with a CVSS base score of 8.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-2601?
Check the references section above for vendor advisories and patch information. Affected products include: Gnu Grub2, Fedoraproject Fedora, Redhat Enterprise Linux Eus, Redhat Enterprise Linux For Power Little Endian Eus, Redhat Enterprise Linux Server Aus.