CVE-2019-14865
5.9
CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:C/C:N/I:N/A:H
Summary
A flaw was found in the grub2-set-bootflag utility of grub2. A local attacker could run this utility under resource pressure (for example by setting RLIMIT), causing grub2 configuration files to be truncated and leaving the system unbootable on subsequent reboots.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| [UNKNOWN] | grub2 | n/a | affected |
Weaknesses
- CWE-267: CWE-267
ADP Enrichment
CVE Program Container
Additional References
- https://seclists.org/oss-sec/2019/q4/101
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14865
- https://access.redhat.com/errata/RHSA-2020:0335
- http://www.openwall.com/lists/oss-security/2024/02/06/3
References
- https://seclists.org/oss-sec/2019/q4/101
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14865
- https://access.redhat.com/errata/RHSA-2020:0335
- http://www.openwall.com/lists/oss-security/2024/02/06/3
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.