2346122 – (CVE-2025-0689) CVE-2025-0689 grub2: udf: Heap based buffer overflow in grub_udf_read_block() may lead to arbitrary code execution

Bug 2346122 (CVE-2025-0689) - CVE-2025-0689 grub2: udf: Heap based buffer overflow in grub_udf_read_block() may lead to arbitrary code execution

Summary: CVE-2025-0689 grub2: udf: Heap based buffer overflow in grub_udf_read_block()...

Keywords:
Status:	NEW
Alias:	CVE-2025-0689
Deadline:	2025-02-18
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Product Security
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2025-02-17 15:36 UTC by OSIDB Bzimport
Modified:	2025-02-24 07:29 UTC (History)
CC List:	1 user (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2025-02-17 15:36:07 UTC

When reading data from disk, the grub's UDF filesystem module utilizes the user controlled data length metadata to allocate its internal buffers. In certain scenarios, while iterating through disk sectors, it assumes the read size from the disk is always smaller than the allocated buffer size which is not guaranteed. A crafted filesystem image may lead to a heap-based buffer overflow resulting in critical data to be corrupted, resulting in the risk of arbitrary code execution by-passing secure boot protections.

Note You need to log in before you can comment on or make changes to this bug.