When reading data from disk, the grub's UDF filesystem module utilizes the user controlled data length metadata to allocate its internal buffers. In certain scenarios, while iterating through disk sectors, it assumes the read size from the disk is always smaller than the allocated buffer size which is not guaranteed. A crafted filesystem image may lead to a heap-based buffer overflow resulting in critical data to be corrupted, resulting in the risk of arbitrary code execution by-passing secure boot protections.
References
| Link | Resource |
|---|---|
| https://access.redhat.com/security/cve/CVE-2025-0689 | Third Party Advisory |
| https://bugzilla.redhat.com/show_bug.cgi?id=2346122 | Issue Tracking Third Party Advisory |
| https://lists.gnu.org/archive/html/grub-devel/2025-02/msg00024.html | Mailing List Vendor Advisory |
Configurations
History
12 Aug 2025, 14:15
| Type | Values Removed | Values Added |
|---|---|---|
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.7 |
31 Jul 2025, 18:15
| Type | Values Removed | Values Added |
|---|---|---|
| CPE | cpe:2.3:a:gnu:grub2:*:*:*:*:*:*:*:* | |
| First Time |
Gnu grub2
Gnu |
|
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.8 |
| References | () https://access.redhat.com/security/cve/CVE-2025-0689 - Third Party Advisory | |
| References | () https://lists.gnu.org/archive/html/grub-devel/2025-02/msg00024.html - Mailing List, Vendor Advisory | |
| References | () https://bugzilla.redhat.com/show_bug.cgi?id=2346122 - Issue Tracking, Third Party Advisory |
05 Mar 2025, 21:15
| Type | Values Removed | Values Added |
|---|---|---|
| CWE | ||
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : unknown |
| References |
|
03 Mar 2025, 15:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2025-03-03 15:15
Updated : 2025-08-12 14:15
NVD link : CVE-2025-0689
Mitre link : CVE-2025-0689
JSON object : View
Products Affected
gnu
- grub2
CWE
No CWE.