CVSS: 7.8EPSS: 0%CPEs: 19EXPL: 0CVE-2025-0678 – Grub2: squash4: integer overflow may lead to heap based out-of-bounds write when reading data
https://notcve.org/view.php?id=CVE-2025-0678
03 Mar 2025 — A flaw was found in grub2. When reading data from a squash4 filesystem, grub's squash4 fs module uses user-controlled parameters from the filesystem geometry to determine the internal buffer size, however, it improperly checks for integer overflows. A maliciously crafted filesystem may lead some of those buffer size calculations to overflow, causing it to perform a grub_malloc() operation with a smaller size than expected. As a result, the direct_read() will perform a heap based out-of-bounds write during d... • https://access.redhat.com/security/cve/CVE-2025-0678 • CWE-190: Integer Overflow or Wraparound CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 19EXPL: 0CVE-2024-45782 – Grub2: fs/hfs: strcpy() using the volume name (fs/hfs.c:382)
https://notcve.org/view.php?id=CVE-2024-45782
03 Mar 2025 — A flaw was found in the HFS filesystem. When reading an HFS volume's name at grub_fs_mount(), the HFS filesystem driver performs a strcpy() using the user-provided volume name as input without properly validating the volume name's length. This issue may read to a heap-based out-of-bounds writer, impacting grub's sensitive data integrity and eventually leading to a secure boot protection bypass. • https://access.redhat.com/security/cve/CVE-2024-45782 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') CWE-787: Out-of-bounds Write •
CVSS: 6.0EPSS: 0%CPEs: 18EXPL: 0CVE-2024-45779 – Grub2: fs/bfs: integer overflow leads to heap oob read in the bfs parser
https://notcve.org/view.php?id=CVE-2024-45779
03 Mar 2025 — An integer overflow flaw was found in the BFS file system driver in grub2. When reading a file with an indirect extent map, grub2 fails to validate the number of extent entries to be read. A crafted or corrupted BFS filesystem may cause an integer overflow during the file reading, leading to a heap of bounds read. As a consequence, sensitive data may be leaked, or grub2 will crash. • https://access.redhat.com/security/cve/CVE-2024-45779 • CWE-125: Out-of-bounds Read CWE-190: Integer Overflow or Wraparound •
CVSS: 4.8EPSS: 0%CPEs: 1EXPL: 1CVE-2025-1377 – GNU elfutils eu-strip strip.c gelf_getsymshndx denial of service
https://notcve.org/view.php?id=CVE-2025-1377
17 Feb 2025 — A vulnerability, which was classified as problematic, has been found in GNU elfutils 0.192. This issue affects the function gelf_getsymshndx of the file strip.c of the component eu-strip. The manipulation leads to denial of service. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used. • https://sourceware.org/bugzilla/attachment.cgi?id=15941 • CWE-404: Improper Resource Shutdown or Release •
CVSS: 2.5EPSS: 0%CPEs: 1EXPL: 1CVE-2025-1376 – GNU elfutils eu-strip elf_strptr.c elf_strptr denial of service
https://notcve.org/view.php?id=CVE-2025-1376
17 Feb 2025 — A vulnerability classified as problematic was found in GNU elfutils 0.192. This vulnerability affects the function elf_strptr in the library /libelf/elf_strptr.c of the component eu-strip. The manipulation leads to denial of service. It is possible to launch the attack on the local host. The complexity of an attack is rather high. • https://sourceware.org/bugzilla/attachment.cgi?id=15940 • CWE-404: Improper Resource Shutdown or Release •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 1CVE-2025-1372 – GNU elfutils eu-readelf readelf.c print_string_section buffer overflow
https://notcve.org/view.php?id=CVE-2025-1372
17 Feb 2025 — A vulnerability was found in GNU elfutils 0.192. It has been declared as critical. Affected by this vulnerability is the function dump_data_section/print_string_section of the file readelf.c of the component eu-readelf. The manipulation of the argument z/x leads to buffer overflow. An attack has to be approached locally. • https://sourceware.org/bugzilla/attachment.cgi?id=15927 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 4.8EPSS: 0%CPEs: 1EXPL: 1CVE-2025-1371 – GNU elfutils eu-read readelf.c handle_dynamic_symtab null pointer dereference
https://notcve.org/view.php?id=CVE-2025-1371
17 Feb 2025 — A vulnerability has been found in GNU elfutils 0.192 and classified as problematic. This vulnerability affects the function handle_dynamic_symtab of the file readelf.c of the component eu-read. The manipulation leads to null pointer dereference. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used. • https://sourceware.org/bugzilla/attachment.cgi?id=15926 • CWE-404: Improper Resource Shutdown or Release CWE-476: NULL Pointer Dereference •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 1CVE-2025-1365 – GNU elfutils eu-readelf readelf.c process_symtab buffer overflow
https://notcve.org/view.php?id=CVE-2025-1365
16 Feb 2025 — A vulnerability, which was classified as critical, was found in GNU elfutils 0.192. This affects the function process_symtab of the file readelf.c of the component eu-readelf. The manipulation of the argument D/a leads to buffer overflow. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. • https://sourceware.org/bugzilla/attachment.cgi?id=15925 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 5.1EPSS: 0%CPEs: 1EXPL: 1CVE-2025-1352 – GNU elfutils eu-readelf libdw_alloc.c __libdw_thread_tail memory corruption
https://notcve.org/view.php?id=CVE-2025-1352
16 Feb 2025 — A vulnerability has been found in GNU elfutils 0.192 and classified as critical. This vulnerability affects the function __libdw_thread_tail in the library libdw_alloc.c of the component eu-readelf. The manipulation of the argument w leads to memory corruption. The attack can be initiated remotely. The complexity of an attack is rather high. • https://sourceware.org/bugzilla/attachment.cgi?id=15923 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 5.1EPSS: 0%CPEs: 1EXPL: 1CVE-2025-1182 – GNU Binutils ld elflink.c bfd_elf_reloc_symbol_deleted_p memory corruption
https://notcve.org/view.php?id=CVE-2025-1182
11 Feb 2025 — A vulnerability, which was classified as critical, was found in GNU Binutils 2.43. Affected is the function bfd_elf_reloc_symbol_deleted_p of the file bfd/elflink.c of the component ld. The manipulation leads to memory corruption. It is possible to launch the attack remotely. The complexity of an attack is rather high. • https://sourceware.org/bugzilla/attachment.cgi?id=15919 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •