CVE-2023-4949

CVSS V2 None CVSS V3 None

Description

An attacker with local access to a system (either through a disk or external drive) can present a modified XFS partition to grub-legacy in such a way to exploit a memory corruption in grub’s XFS file system implementation.

Overview

CVE ID
CVE-2023-4949

Assigner
Google

Vulnerability Status
PUBLISHED

Published Version
2023-11-10T16:57:03.311Z

Last Modified Date
2023-11-10T16:57:03.311Z

Weakness Enumerations

CWE	URL
CWE-119	http://cwe.mitre.org/data/definitions/119.html
CWE-190	http://cwe.mitre.org/data/definitions/190.html

References

Reference URL	Reference Tags
https://xenbits.xenproject.org/xsa/advisory-443.html

Sources

Source Name	Source URL
NIST	https://nvd.nist.gov/vuln/detail/CVE-2023-4949
MITRE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4949

History

Created	Old Value	New Value	Data Type	Notes
2024-06-24 19:47:53				Added to TrackCVE