There is an out-of-bounds write in fs/ntfs.c, an attacker may leverage this vulnerability by presenting a specially crafted NTFS filesystem image leading to grub's heap metadata corruption. Additionally, in some circumstances, the attack may also corrupt the UEFI firmware heap metadata. As a result arbitrary code execution and secure boot protection bypass may be achieved.
Created grub2 tracking bugs for this issue: Affects: fedora-all [bug 2241978]
Upstream patch for this issue: https://lists.gnu.org/archive/html/grub-devel/2023-10/msg00029.html
This is duplicating https://issues.redhat.com/browse/RHEL-11567 which is already set to RELEASE PENDING. I believe this can be closed.
This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2024:2456 https://access.redhat.com/errata/RHSA-2024:2456
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2024:3184 https://access.redhat.com/errata/RHSA-2024:3184