CVE-2022-2601: Buffer Overflow
First published: Mon Aug 01 2022(Updated: )
A buffer overflow was found in grub_font_construct_glyph(). A malicious crafted pf2 font can lead to an overflow when calculating the max_glyph_size value, allocating a smaller than needed buffer for the glyph, this further leads to a buffer overflow and a heap based out-of-bounds write. An attacker may use this vulnerability to circumvent the secure boot mechanism.
Credit: secalert@redhat.com secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Gnu Grub2 | <=2.06 | |
| Fedoraproject Fedora | =37 | |
| Redhat Enterprise Linux Eus | =9.0 | |
| Redhat Enterprise Linux For Power Little Endian Eus | =9.0 | |
| Redhat Enterprise Linux Server Aus | =8.2 | |
| Redhat Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions | =8.1 | |
| Redhat Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions | =8.2 | |
| Redhat Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions | =9.0 | |
| Redhat Enterprise Linux Server Tus | =8.2 | |
| Redhat Enterprise Linux Server Update Services For Sap Solutions | =8.1 | |
| Redhat Enterprise Linux Server Update Services For Sap Solutions | =8.2 | |
| Redhat Enterprise Linux Server Update Services For Sap Solutions | =9.0 | |
| redhat/grub | <2.06 | 2.06 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://bugzilla.redhat.com/show_bug.cgi?id=2112975#c0
- https://security.netapp.com/advisory/ntap-20230203-0004/
- https://security.gentoo.org/glsa/202311-14
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2142996
- https://access.redhat.com/errata/RHSA-2022:8494
- https://access.redhat.com/errata/RHSA-2022:8800
- https://access.redhat.com/errata/RHSA-2022:8978
- https://access.redhat.com/errata/RHSA-2023:0049
- https://access.redhat.com/errata/RHSA-2023:0048
- https://access.redhat.com/errata/RHSA-2023:0047
- https://access.redhat.com/errata/RHSA-2023:0752
- https://access.redhat.com/security/cve/cve-2022-2601
- https://access.redhat.com/errata/RHSA-2024:2002
- https://bugzilla.redhat.com/show_bug.cgi?id=2112975
Frequently Asked Questions
What is the vulnerability ID of this buffer overflow?
The vulnerability ID is CVE-2022-2601.
What software is affected by CVE-2022-2601?
The affected software includes Gnu Grub2, Fedora 37, Redhat Enterprise Linux Eus, Redhat Enterprise Linux For Power Little Endian Eus, Redhat Enterprise Linux Server Aus, Redhat Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions, Redhat Enterprise Linux Server Tus, Redhat Enterprise Linux Server Update Services For Sap Solutions.
What is the severity rating of CVE-2022-2601?
CVE-2022-2601 has a severity rating of 8.6 (high).
What are the Common Weakness Enumerations (CWE) associated with CVE-2022-2601?
The common weakness enumerations (CWE) associated with CVE-2022-2601 are CWE-119, CWE-122, and CWE-787.
Where can I find more information about CVE-2022-2601?
You can find more information about CVE-2022-2601 at the following references: [1](https://bugzilla.redhat.com/show_bug.cgi?id=2112975#c0), [2](https://security.netapp.com/advisory/ntap-20230203-0004/), [3](https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2142996).
- collector/nvd-index
- collector/mitre-cve
- collector/nvd-api
- agent/author
- agent/type
- agent/softwarecombine
- agent/first-publish-date
- agent/severity
- agent/references
- agent/weakness
- agent/description
- agent/event
- agent/tags
- agent/last-modified-date
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2022-2601
- agent/software-canonical-lookup
- vendor/gnu
- canonical/gnu grub2
- version/gnu grub2/2.06
- vendor/fedoraproject
- canonical/fedoraproject fedora
- version/fedoraproject fedora/37
- vendor/redhat
- canonical/redhat enterprise linux eus
- version/redhat enterprise linux eus/9.0
- canonical/redhat enterprise linux for power little endian eus
- version/redhat enterprise linux for power little endian eus/9.0
- canonical/redhat enterprise linux server aus
- version/redhat enterprise linux server aus/8.2
- canonical/redhat enterprise linux server for power little endian update services for sap solutions
- version/redhat enterprise linux server for power little endian update services for sap solutions/8.1
- version/redhat enterprise linux server for power little endian update services for sap solutions/8.2
- version/redhat enterprise linux server for power little endian update services for sap solutions/9.0
- canonical/redhat enterprise linux server tus
- version/redhat enterprise linux server tus/8.2
- canonical/redhat enterprise linux server update services for sap solutions
- version/redhat enterprise linux server update services for sap solutions/8.1
- version/redhat enterprise linux server update services for sap solutions/8.2
- version/redhat enterprise linux server update services for sap solutions/9.0
- package-manager/redhat