CVE-2023-4949Improper Restriction of Operations within the Bounds of a Memory Buffer in Software Foundation Grub-legacy

CWE-119Improper Restriction of Operations within the Bounds of a Memory BufferCWE-190Integer Overflow or WraparoundCWE-787Out-of-bounds Write8 documents4 sources
Severity
7.8HIGHNVD
NVD6.7OSV6.7
EPSS
0.0%
top 90.94%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
5
XENDebian XENFree Software Foundation Grub-legacy+2 more
Timeline
PublishedNov 10
Latest updateJan 5

Description

An attacker with local access to a system (either through a disk or external drive) can present a modified XFS partition to grub-legacy in such a way to exploit a memory corruption in grub’s XFS file system implementation.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:HExploitability: 0.8 | Impact: 5.9

Affected Packages6 packages

NVDgnu/grub0.97
debiandebian/grub
debiandebian/xen< xen 4.17.2+76-ge1f9cb16e2-1~deb12u1 (bookworm)
Alpinexen/xen< 4.15.5-r3+8

Patches

Patch: xenbits.xenproject.orgPatch: xenbits.xenproject.org

🔴Vulnerability Details

4
OSV
CVE-2023-34325: [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE2024-01-05
GHSA
GHSA-gwmw-qvr5-88j2: [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE2024-01-05
OSV
CVE-2023-34325: [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE2024-01-05
OSV
CVE-2023-4949: An attacker with local access to a system (either through a disk or external drive) can present a modified XFS partition to grub-legacy in such a way2023-11-10

📋Vendor Advisories

2
Debian
CVE-2023-4949: grub - An attacker with local access to a system (either through a disk or external dri...2023
Debian
CVE-2023-34325: xen - [This CNA information record relates to multiple CVEs; the text explains which a...2023