公告ID: KYLIN-2020-14308
安全等级: 中等
产品: Kylin V3
发布日期: 2020年7月29日
CVE: CVE-2020-14308
CVSS3评分: 6.4
概述:
None 描述:
In grub2 versions before 2.06 the grub memory allocator doesn't check for possible arithmetic overflows on the requested allocation size. This leads the function to return invalid memory allocations which can be further used to cause possible integrity, confidentiality and availability impacts during the boot process. 系统版本:
KYLIN 3.3.x
KYLIN 3.4.x
受影响包列表:
grub2-1:2.02-0.86.el7_8
grub2-1:2.02-87.el8_2