GNU GRUB2 Vulnerability
Cybersecurity and Infrastructure Security Agency sent this bulletin at 07/30/2020 11:19 AM EDTYou are subscribed to no topic for Cybersecurity and Infrastructure Security Agency. This information has recently been updated, and is now available.
07/30/2020 10:40 AM EDT
Original release date: July 30, 2020
Free Software Foundation GNU Project's multiboot boot loader, GNU GRUB2, contains a vulnerability—CVE-2020-10713—that a local attacker could exploit to take control of an affected system.
The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the CERT Coordination Center’s Vulnerability Note VU#174059 for mitigations and to refer to operating system vendors for appropriate patches, when available.
This product is provided subject to this Notification and this Privacy & Use policy.