MGASA-2015-0480

See a problem?
Please try reporting it to the source first.

Source

https://advisories.mageia.org/MGASA-2015-0480.html

Import Source

https://advisories.mageia.org/MGASA-2015-0480.json

JSON Data

https://api.osv.dev/v1/vulns/MGASA-2015-0480

Related

CVE-2015-8370

Published

2015-12-20T09:15:38Z

Modified

2015-12-20T09:10:34Z

Summary

Updated grub2 packages fix security vulnerability

Details

A flaw was found in the way the grub2 handled backspace characters entered in username and password prompts. An attacker with access to the system console could use this flaw to bypass grub2 password protection and gain administrative access to the system (CVE-2015-8370).

References

Credits

- Mageia - COORDINATOR
- - https://wiki.mageia.org/en/Packages_Security_Team

Affected packages

Mageia:5 / grub2

Package

Name: grub2
Purl: pkg:rpm/mageia/grub2?distro=mageia-5

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.02-0.git9752.18.3.mga5

Ecosystem specific

{
    "section": "core"
}