
CVE-2024-45779 – Grub2: fs/bfs: integer overflow leads to heap oob read in the bfs parser
https://notcve.org/view.php?id=CVE-2024-45779
19 Feb 2025 — An integer overflow flaw was found in the BFS file system driver in grub2. ... Fixed an integer overflow in gettext. ... Fixed an integer overflow that may lead to an out-of-bounds write through the read command. ... Fixed an integer overflow that may lead to an out-of-bounds write in hfs. Fixed an integer overflow that may lead to an out-of-bounds write in squash4. • https://access.redhat.com/security/cve/CVE-2024-45779 • CWE-125: Out-of-bounds Read CWE-190: Integer Overflow or Wraparound •

CVE-2024-45780 – Grub2: fs/tar: integer overflow causes heap oob write
https://notcve.org/view.php?id=CVE-2024-45780
19 Feb 2025 — Fixed an integer overflow in gettext. ... Fixed an integer overflow that may lead to an out-of-bounds write through the read command. ... Fixed an integer overflow that may lead to an out-of-bounds write when handling symlinks in ufs. ... Fixed an integer overflow that may lead to an out-of-bounds write in hfs. Fixed an integer overflow that may lead to an out-of-bounds write in squa... • https://access.redhat.com/security/cve/CVE-2024-45780 • CWE-787: Out-of-bounds Write •

CVE-2024-45782 – Grub2: fs/hfs: strcpy() using the volume name (fs/hfs.c:382)
https://notcve.org/view.php?id=CVE-2024-45782
19 Feb 2025 — Fixed an integer overflow in gettext. ... Fixed an integer overflow that may lead to an out-of-bounds write through the read command. ... Fixed an integer overflow that may lead to an out-of-bounds write when handling symlinks in ufs. ... Fixed an integer overflow that may lead to an out-of-bounds write in hfs. Fixed an integer overflow that may lead to an out-of-bounds write in squa... • https://access.redhat.com/security/cve/CVE-2024-45782 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') CWE-787: Out-of-bounds Write •

CVE-2025-0678 – Grub2: squash4: integer overflow may lead to heap based out-of-bounds write when reading data
https://notcve.org/view.php?id=CVE-2025-0678
19 Feb 2025 — Fixed an integer overflow in gettext. ... Fixed an integer overflow that may lead to an out-of-bounds write through the read command. ... Fixed an integer overflow that may lead to an out-of-bounds write when handling symlinks in ufs. ... Fixed an integer overflow that may lead to an out-of-bounds write in hfs. Fixed an integer overflow that may lead to an out-of-bounds write in squa... • https://access.redhat.com/security/cve/CVE-2025-0678 • CWE-190: Integer Overflow or Wraparound CWE-787: Out-of-bounds Write •

CVE-2025-0684 – Grub2: reiserfs: integer overflow when handling symlinks may lead to heap based out-of-bounds write when reading data
https://notcve.org/view.php?id=CVE-2025-0684
19 Feb 2025 — Fixed an integer overflow in gettext. ... Fixed an integer overflow that may lead to an out-of-bounds write through the read command. ... Fixed an integer overflow that may lead to an out-of-bounds write when handling symlinks in ufs. ... Fixed an integer overflow that may lead to an out-of-bounds write in hfs. Fixed an integer overflow that may lead to an out-of-bounds write in squa... • https://access.redhat.com/security/cve/CVE-2025-0684 • CWE-787: Out-of-bounds Write •

CVE-2025-0685 – Grub2: jfs: integer overflow when handling symlinks may lead to heap based out-of-bounds write when reading data
https://notcve.org/view.php?id=CVE-2025-0685
19 Feb 2025 — Fixed an integer overflow in gettext. ... Fixed an integer overflow that may lead to an out-of-bounds write through the read command. ... Fixed an integer overflow that may lead to an out-of-bounds write when handling symlinks in ufs. ... Fixed an integer overflow that may lead to an out-of-bounds write in hfs. Fixed an integer overflow that may lead to an out-of-bounds write in squa... • https://access.redhat.com/security/cve/CVE-2025-0685 • CWE-787: Out-of-bounds Write •

CVE-2025-0686 – Grub2: romfs: integer overflow when handling symlinks may lead to heap based out-of-bounds write when reading dat
https://notcve.org/view.php?id=CVE-2025-0686
19 Feb 2025 — Fixed an integer overflow in gettext. ... Fixed an integer overflow that may lead to an out-of-bounds write through the read command. ... Fixed an integer overflow that may lead to an out-of-bounds write when handling symlinks in ufs. ... Fixed an integer overflow that may lead to an out-of-bounds write in hfs. Fixed an integer overflow that may lead to an out-of-bounds write in squa... • https://access.redhat.com/security/cve/CVE-2025-0686 • CWE-787: Out-of-bounds Write •

CVE-2025-0689 – Grub2: udf: heap based buffer overflow in grub_udf_read_block() may lead to arbitrary code execution
https://notcve.org/view.php?id=CVE-2025-0689
19 Feb 2025 — Fixed an integer overflow in gettext. ... Fixed an integer overflow that may lead to an out-of-bounds write through the read command. ... Fixed an integer overflow that may lead to an out-of-bounds write when handling symlinks in ufs. ... Fixed an integer overflow that may lead to an out-of-bounds write in hfs. Fixed an integer overflow that may lead to an out-of-bounds write in squa... • https://access.redhat.com/security/cve/CVE-2025-0689 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •

CVE-2025-1125 – Grub2: fs/hfs: integer overflow may lead to heap based out-of-bounds write
https://notcve.org/view.php?id=CVE-2025-1125
19 Feb 2025 — Fixed an integer overflow in gettext. ... Fixed an integer overflow that may lead to an out-of-bounds write through the read command. ... Fixed an integer overflow that may lead to an out-of-bounds write when handling symlinks in ufs. ... Fixed an integer overflow that may lead to an out-of-bounds write in hfs. Fixed an integer overflow that may lead to an out-of-bounds write in squa... • https://access.redhat.com/security/cve/CVE-2025-1125 • CWE-787: Out-of-bounds Write •

CVE-2025-0622 – Grub2: command/gpg: use-after-free due to hooks not being removed on module unload
https://notcve.org/view.php?id=CVE-2025-0622
18 Feb 2025 — Fixed an integer overflow in gettext. ... Fixed an integer overflow that may lead to an out-of-bounds write through the read command. ... Fixed an integer overflow that may lead to an out-of-bounds write when handling symlinks in ufs. ... Fixed an integer overflow that may lead to an out-of-bounds write in hfs. Fixed an integer overflow that may lead to an out-of-bounds write in squa... • https://access.redhat.com/security/cve/CVE-2025-0622 • CWE-416: Use After Free •