CVE-2024-45783

Summary

A flaw was found in grub2. When failing to mount an HFS+ grub, the hfsplus filesystem driver doesn't properly set an ERRNO value. This issue may lead to a NULL pointer access.

Affected Software

VendorProductVersion RangeStatus
0 <= 2.12affected
Red HatRed Hat Enterprise Linux 91:2.06-104.el9_6 < *unaffected

Weaknesses

  • CWE-911: Improper Update of Reference Count

Workarounds

Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References