{"id":"USN-4432-2","summary":"grub2, grub2-signed regression","details":"USN-4432-1 fixed vulnerabilities in GRUB2 affecting Secure Boot\nenvironments. Unfortunately, the update introduced regressions for\nsome BIOS systems (either pre-UEFI or UEFI configured in Legacy mode),\npreventing them from successfully booting. This update addresses\nthe issue.\n\nUsers with BIOS systems that installed GRUB2 versions from USN-4432-1\nshould verify that their GRUB2 installation has a correct understanding\nof their boot device location and installed the boot loader correctly.\n\nWe apologize for the inconvenience.\n\nOriginal advisory details:\n\n Jesse Michael and Mickey Shkatov discovered that the configuration parser\n in GRUB2 did not properly exit when errors were discovered, resulting in\n heap-based buffer overflows. A local attacker could use this to execute\n arbitrary code and bypass UEFI Secure Boot restrictions. (CVE-2020-10713)\n\n Chris Coulson discovered that the GRUB2 function handling code did not\n properly handle a function being redefined, leading to a use-after-free\n vulnerability. A local attacker could use this to execute arbitrary code\n and bypass UEFI Secure Boot restrictions. (CVE-2020-15706)\n\n Chris Coulson discovered that multiple integer overflows existed in GRUB2\n when handling certain filesystems or font files, leading to heap-based\n buffer overflows. A local attacker could use these to execute arbitrary\n code and bypass UEFI Secure Boot restrictions. (CVE-2020-14309,\n CVE-2020-14310, CVE-2020-14311)\n\n It was discovered that the memory allocator for GRUB2 did not validate\n allocation size, resulting in multiple integer overflows and heap-based\n buffer overflows when handling certain filesystems, PNG images or disk\n metadata. A local attacker could use this to execute arbitrary code and\n bypass UEFI Secure Boot restrictions. (CVE-2020-14308)\n\n Mathieu Trudel-Lapierre discovered that in certain situations, GRUB2\n failed to validate kernel signatures. A local attacker could use this\n to bypass Secure Boot restrictions. (CVE-2020-15705)\n\n Colin Watson and Chris Coulson discovered that an integer overflow\n existed in GRUB2 when handling the initrd command, leading to a heap-based\n buffer overflow. A local attacker could use this to execute arbitrary code\n and bypass UEFI Secure Boot restrictions. (CVE-2020-15707)\n","modified":"2026-02-10T04:41:53Z","published":"2020-08-04T23:54:15Z","references":[{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-4432-2"},{"type":"REPORT","url":"https://launchpad.net/bugs/1889556"}],"affected":[{"package":{"name":"grub2","ecosystem":"Ubuntu:Pro:14.04:LTS","purl":"pkg:deb/ubuntu/grub2@2.02~beta2-9ubuntu1.21?arch=source&distro=trusty/esm"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.02~beta2-9ubuntu1.21"}]}],"versions":["2.00-19ubuntu2","2.00-19ubuntu3","2.00-19ubuntu4","2.00-20","2.00-21","2.00-22","2.02~beta2-5","2.02~beta2-6","2.02~beta2-7","2.02~beta2-8","2.02~beta2-9","2.02~beta2-9ubuntu1","2.02~beta2-9ubuntu1.1","2.02~beta2-9ubuntu1.2","2.02~beta2-9ubuntu1.3","2.02~beta2-9ubuntu1.4","2.02~beta2-9ubuntu1.5","2.02~beta2-9ubuntu1.6","2.02~beta2-9ubuntu1.7","2.02~beta2-9ubuntu1.8","2.02~beta2-9ubuntu1.11","2.02~beta2-9ubuntu1.12","2.02~beta2-9ubuntu1.14","2.02~beta2-9ubuntu1.15","2.02~beta2-9ubuntu1.16","2.02~beta2-9ubuntu1.17","2.02~beta2-9ubuntu1.20"],"ecosystem_specific":{"availability":"Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro","binaries":[{"binary_version":"2.02~beta2-9ubuntu1.21","binary_name":"grub-common"},{"binary_version":"2.02~beta2-9ubuntu1.21","binary_name":"grub-coreboot"},{"binary_version":"2.02~beta2-9ubuntu1.21","binary_name":"grub-coreboot-bin"},{"binary_version":"2.02~beta2-9ubuntu1.21","binary_name":"grub-efi"},{"binary_version":"2.02~beta2-9ubuntu1.21","binary_name":"grub-efi-amd64"},{"binary_version":"2.02~beta2-9ubuntu1.21","binary_name":"grub-efi-amd64-bin"},{"binary_version":"2.02~beta2-9ubuntu1.21","binary_name":"grub-efi-arm"},{"binary_version":"2.02~beta2-9ubuntu1.21","binary_name":"grub-efi-arm-bin"},{"binary_version":"2.02~beta2-9ubuntu1.21","binary_name":"grub-efi-arm64"},{"binary_version":"2.02~beta2-9ubuntu1.21","binary_name":"grub-efi-arm64-bin"},{"binary_version":"2.02~beta2-9ubuntu1.21","binary_name":"grub-efi-ia32"},{"binary_version":"2.02~beta2-9ubuntu1.21","binary_name":"grub-efi-ia32-bin"},{"binary_version":"2.02~beta2-9ubuntu1.21","binary_name":"grub-emu"},{"binary_version":"2.02~beta2-9ubuntu1.21","binary_name":"grub-firmware-qemu"},{"binary_version":"2.02~beta2-9ubuntu1.21","binary_name":"grub-ieee1275"},{"binary_version":"2.02~beta2-9ubuntu1.21","binary_name":"grub-ieee1275-bin"},{"binary_version":"2.02~beta2-9ubuntu1.21","binary_name":"grub-linuxbios"},{"binary_version":"2.02~beta2-9ubuntu1.21","binary_name":"grub-pc"},{"binary_version":"2.02~beta2-9ubuntu1.21","binary_name":"grub-pc-bin"},{"binary_version":"2.02~beta2-9ubuntu1.21","binary_name":"grub-rescue-pc"},{"binary_version":"2.02~beta2-9ubuntu1.21","binary_name":"grub-theme-starfield"},{"binary_version":"2.02~beta2-9ubuntu1.21","binary_name":"grub-uboot"},{"binary_version":"2.02~beta2-9ubuntu1.21","binary_name":"grub-uboot-bin"},{"binary_version":"2.02~beta2-9ubuntu1.21","binary_name":"grub-xen"},{"binary_version":"2.02~beta2-9ubuntu1.21","binary_name":"grub-xen-bin"},{"binary_version":"2.02~beta2-9ubuntu1.21","binary_name":"grub2"},{"binary_version":"2.02~beta2-9ubuntu1.21","binary_name":"grub2-common"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-4432-2.json","cves_map":{"ecosystem":"Ubuntu:Pro:14.04:LTS","cves":[]}}},{"package":{"name":"grub2-signed","ecosystem":"Ubuntu:Pro:14.04:LTS","purl":"pkg:deb/ubuntu/grub2-signed@1.34.24?arch=source&distro=trusty/esm"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.34.24"}]}],"versions":["1.22","1.23","1.24","1.25","1.26","1.27","1.30","1.31","1.32","1.33","1.34","1.34.1","1.34.2","1.34.3","1.34.4","1.34.5","1.34.6","1.34.7","1.34.8","1.34.9","1.34.13","1.34.14","1.34.16","1.34.17","1.34.18","1.34.20","1.34.22"],"ecosystem_specific":{"availability":"Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro","binaries":[{"binary_version":"1.34.24+2.02~beta2-9ubuntu1.21","binary_name":"grub-efi-amd64-signed"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-4432-2.json","cves_map":{"ecosystem":"Ubuntu:Pro:14.04:LTS","cves":[]}}},{"package":{"name":"grub2","ecosystem":"Ubuntu:16.04:LTS","purl":"pkg:deb/ubuntu/grub2@2.02~beta2-36ubuntu3.27?arch=source&distro=xenial"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.02~beta2-36ubuntu3.27"}]}],"versions":["2.02~beta2-29","2.02~beta2-31","2.02~beta2-31ubuntu1","2.02~beta2-32","2.02~beta2-32ubuntu1","2.02~beta2-35","2.02~beta2-35ubuntu1","2.02~beta2-36","2.02~beta2-36ubuntu1","2.02~beta2-36ubuntu2","2.02~beta2-36ubuntu3","2.02~beta2-36ubuntu3.1","2.02~beta2-36ubuntu3.2","2.02~beta2-36ubuntu3.6","2.02~beta2-36ubuntu3.7","2.02~beta2-36ubuntu3.8","2.02~beta2-36ubuntu3.9","2.02~beta2-36ubuntu3.11","2.02~beta2-36ubuntu3.12","2.02~beta2-36ubuntu3.14","2.02~beta2-36ubuntu3.15","2.02~beta2-36ubuntu3.16","2.02~beta2-36ubuntu3.17","2.02~beta2-36ubuntu3.18","2.02~beta2-36ubuntu3.19","2.02~beta2-36ubuntu3.20","2.02~beta2-36ubuntu3.21","2.02~beta2-36ubuntu3.22","2.02~beta2-36ubuntu3.23","2.02~beta2-36ubuntu3.26"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_version":"2.02~beta2-36ubuntu3.27","binary_name":"grub-common"},{"binary_version":"2.02~beta2-36ubuntu3.27","binary_name":"grub-coreboot"},{"binary_version":"2.02~beta2-36ubuntu3.27","binary_name":"grub-coreboot-bin"},{"binary_version":"2.02~beta2-36ubuntu3.27","binary_name":"grub-efi"},{"binary_version":"2.02~beta2-36ubuntu3.27","binary_name":"grub-efi-amd64"},{"binary_version":"2.02~beta2-36ubuntu3.27","binary_name":"grub-efi-amd64-bin"},{"binary_version":"2.02~beta2-36ubuntu3.27","binary_name":"grub-efi-arm"},{"binary_version":"2.02~beta2-36ubuntu3.27","binary_name":"grub-efi-arm-bin"},{"binary_version":"2.02~beta2-36ubuntu3.27","binary_name":"grub-efi-arm64"},{"binary_version":"2.02~beta2-36ubuntu3.27","binary_name":"grub-efi-arm64-bin"},{"binary_version":"2.02~beta2-36ubuntu3.27","binary_name":"grub-efi-ia32"},{"binary_version":"2.02~beta2-36ubuntu3.27","binary_name":"grub-efi-ia32-bin"},{"binary_version":"2.02~beta2-36ubuntu3.27","binary_name":"grub-emu"},{"binary_version":"2.02~beta2-36ubuntu3.27","binary_name":"grub-firmware-qemu"},{"binary_version":"2.02~beta2-36ubuntu3.27","binary_name":"grub-ieee1275"},{"binary_version":"2.02~beta2-36ubuntu3.27","binary_name":"grub-ieee1275-bin"},{"binary_version":"2.02~beta2-36ubuntu3.27","binary_name":"grub-linuxbios"},{"binary_version":"2.02~beta2-36ubuntu3.27","binary_name":"grub-pc"},{"binary_version":"2.02~beta2-36ubuntu3.27","binary_name":"grub-pc-bin"},{"binary_version":"2.02~beta2-36ubuntu3.27","binary_name":"grub-rescue-pc"},{"binary_version":"2.02~beta2-36ubuntu3.27","binary_name":"grub-theme-starfield"},{"binary_version":"2.02~beta2-36ubuntu3.27","binary_name":"grub-uboot"},{"binary_version":"2.02~beta2-36ubuntu3.27","binary_name":"grub-uboot-bin"},{"binary_version":"2.02~beta2-36ubuntu3.27","binary_name":"grub-xen"},{"binary_version":"2.02~beta2-36ubuntu3.27","binary_name":"grub-xen-bin"},{"binary_version":"2.02~beta2-36ubuntu3.27","binary_name":"grub-xen-host"},{"binary_version":"2.02~beta2-36ubuntu3.27","binary_name":"grub2"},{"binary_version":"2.02~beta2-36ubuntu3.27","binary_name":"grub2-common"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-4432-2.json","cves_map":{"ecosystem":"Ubuntu:16.04:LTS","cves":[]}}},{"package":{"name":"grub2-signed","ecosystem":"Ubuntu:16.04:LTS","purl":"pkg:deb/ubuntu/grub2-signed@1.66.27?arch=source&distro=xenial"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.66.27"}]}],"versions":["1.55","1.56","1.57","1.58","1.59","1.61","1.62","1.63","1.64","1.65","1.66","1.66.1","1.66.2","1.66.6","1.66.7","1.66.8","1.66.9","1.66.11","1.66.12","1.66.14","1.66.15","1.66.16","1.66.17","1.66.18","1.66.19","1.66.20","1.66.21","1.66.22","1.66.23","1.66.26"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_version":"1.66.27+2.02~beta2-36ubuntu3.27","binary_name":"grub-efi-amd64-signed"},{"binary_version":"1.66.27+2.02~beta2-36ubuntu3.27","binary_name":"grub-efi-arm64-signed"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-4432-2.json","cves_map":{"ecosystem":"Ubuntu:16.04:LTS","cves":[]}}},{"package":{"name":"grub2","ecosystem":"Ubuntu:18.04:LTS","purl":"pkg:deb/ubuntu/grub2@2.02-2ubuntu8.17?arch=source&distro=bionic"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.02-2ubuntu8.17"}]}],"versions":["2.02~beta3-4ubuntu7","2.02-2ubuntu1","2.02-2ubuntu2","2.02-2ubuntu4","2.02-2ubuntu6","2.02-2ubuntu7","2.02-2ubuntu8","2.02-2ubuntu8.1","2.02-2ubuntu8.2","2.02-2ubuntu8.3","2.02-2ubuntu8.4","2.02-2ubuntu8.6","2.02-2ubuntu8.7","2.02-2ubuntu8.9","2.02-2ubuntu8.10","2.02-2ubuntu8.12","2.02-2ubuntu8.13","2.02-2ubuntu8.14","2.02-2ubuntu8.15","2.02-2ubuntu8.16"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_version":"2.02-2ubuntu8.17","binary_name":"grub-common"},{"binary_version":"2.02-2ubuntu8.17","binary_name":"grub-coreboot"},{"binary_version":"2.02-2ubuntu8.17","binary_name":"grub-coreboot-bin"},{"binary_version":"2.02-2ubuntu8.17","binary_name":"grub-efi"},{"binary_version":"2.02-2ubuntu8.17","binary_name":"grub-efi-amd64"},{"binary_version":"2.02-2ubuntu8.17","binary_name":"grub-efi-amd64-bin"},{"binary_version":"2.02-2ubuntu8.17","binary_name":"grub-efi-arm"},{"binary_version":"2.02-2ubuntu8.17","binary_name":"grub-efi-arm-bin"},{"binary_version":"2.02-2ubuntu8.17","binary_name":"grub-efi-arm64"},{"binary_version":"2.02-2ubuntu8.17","binary_name":"grub-efi-arm64-bin"},{"binary_version":"2.02-2ubuntu8.17","binary_name":"grub-efi-ia32"},{"binary_version":"2.02-2ubuntu8.17","binary_name":"grub-efi-ia32-bin"},{"binary_version":"2.02-2ubuntu8.17","binary_name":"grub-emu"},{"binary_version":"2.02-2ubuntu8.17","binary_name":"grub-firmware-qemu"},{"binary_version":"2.02-2ubuntu8.17","binary_name":"grub-ieee1275"},{"binary_version":"2.02-2ubuntu8.17","binary_name":"grub-ieee1275-bin"},{"binary_version":"2.02-2ubuntu8.17","binary_name":"grub-linuxbios"},{"binary_version":"2.02-2ubuntu8.17","binary_name":"grub-pc"},{"binary_version":"2.02-2ubuntu8.17","binary_name":"grub-pc-bin"},{"binary_version":"2.02-2ubuntu8.17","binary_name":"grub-rescue-pc"},{"binary_version":"2.02-2ubuntu8.17","binary_name":"grub-theme-starfield"},{"binary_version":"2.02-2ubuntu8.17","binary_name":"grub-uboot"},{"binary_version":"2.02-2ubuntu8.17","binary_name":"grub-uboot-bin"},{"binary_version":"2.02-2ubuntu8.17","binary_name":"grub-xen"},{"binary_version":"2.02-2ubuntu8.17","binary_name":"grub-xen-bin"},{"binary_version":"2.02-2ubuntu8.17","binary_name":"grub-xen-host"},{"binary_version":"2.02-2ubuntu8.17","binary_name":"grub2"},{"binary_version":"2.02-2ubuntu8.17","binary_name":"grub2-common"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-4432-2.json","cves_map":{"ecosystem":"Ubuntu:18.04:LTS","cves":[]}}},{"package":{"name":"grub2-signed","ecosystem":"Ubuntu:18.04:LTS","purl":"pkg:deb/ubuntu/grub2-signed@1.93.19?arch=source&distro=bionic"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.93.19"}]}],"versions":["1.85","1.86","1.87","1.89","1.91","1.92","1.93","1.93.1","1.93.2","1.93.3","1.93.4","1.93.5","1.93.7","1.93.8","1.93.10","1.93.11","1.93.13","1.93.14","1.93.15","1.93.16","1.93.18"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_version":"1.93.19+2.02-2ubuntu8.17","binary_name":"grub-efi-amd64-signed"},{"binary_version":"1.93.19+2.02-2ubuntu8.17","binary_name":"grub-efi-arm64-signed"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-4432-2.json","cves_map":{"ecosystem":"Ubuntu:18.04:LTS","cves":[]}}},{"package":{"name":"grub2","ecosystem":"Ubuntu:20.04:LTS","purl":"pkg:deb/ubuntu/grub2@2.04-1ubuntu26.2?arch=source&distro=focal"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.04-1ubuntu26.2"}]}],"versions":["2.04-1ubuntu12","2.04-1ubuntu13","2.04-1ubuntu14","2.04-1ubuntu16","2.04-1ubuntu18","2.04-1ubuntu20","2.04-1ubuntu21","2.04-1ubuntu22","2.04-1ubuntu23","2.04-1ubuntu24","2.04-1ubuntu25","2.04-1ubuntu26","2.04-1ubuntu26.1"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_version":"2.04-1ubuntu26.2","binary_name":"grub-common"},{"binary_version":"2.04-1ubuntu26.2","binary_name":"grub-coreboot"},{"binary_version":"2.04-1ubuntu26.2","binary_name":"grub-coreboot-bin"},{"binary_version":"2.04-1ubuntu26.2","binary_name":"grub-efi"},{"binary_version":"2.04-1ubuntu26.2","binary_name":"grub-efi-amd64"},{"binary_version":"2.04-1ubuntu26.2","binary_name":"grub-efi-amd64-bin"},{"binary_version":"2.04-1ubuntu26.2","binary_name":"grub-efi-amd64-signed-template"},{"binary_version":"2.04-1ubuntu26.2","binary_name":"grub-efi-arm"},{"binary_version":"2.04-1ubuntu26.2","binary_name":"grub-efi-arm-bin"},{"binary_version":"2.04-1ubuntu26.2","binary_name":"grub-efi-arm64"},{"binary_version":"2.04-1ubuntu26.2","binary_name":"grub-efi-arm64-bin"},{"binary_version":"2.04-1ubuntu26.2","binary_name":"grub-efi-arm64-signed-template"},{"binary_version":"2.04-1ubuntu26.2","binary_name":"grub-efi-ia32"},{"binary_version":"2.04-1ubuntu26.2","binary_name":"grub-efi-ia32-bin"},{"binary_version":"2.04-1ubuntu26.2","binary_name":"grub-emu"},{"binary_version":"2.04-1ubuntu26.2","binary_name":"grub-firmware-qemu"},{"binary_version":"2.04-1ubuntu26.2","binary_name":"grub-ieee1275"},{"binary_version":"2.04-1ubuntu26.2","binary_name":"grub-ieee1275-bin"},{"binary_version":"2.04-1ubuntu26.2","binary_name":"grub-linuxbios"},{"binary_version":"2.04-1ubuntu26.2","binary_name":"grub-pc"},{"binary_version":"2.04-1ubuntu26.2","binary_name":"grub-pc-bin"},{"binary_version":"2.04-1ubuntu26.2","binary_name":"grub-rescue-pc"},{"binary_version":"2.04-1ubuntu26.2","binary_name":"grub-theme-starfield"},{"binary_version":"2.04-1ubuntu26.2","binary_name":"grub-uboot"},{"binary_version":"2.04-1ubuntu26.2","binary_name":"grub-uboot-bin"},{"binary_version":"2.04-1ubuntu26.2","binary_name":"grub-xen"},{"binary_version":"2.04-1ubuntu26.2","binary_name":"grub-xen-bin"},{"binary_version":"2.04-1ubuntu26.2","binary_name":"grub-xen-host"},{"binary_version":"2.04-1ubuntu26.2","binary_name":"grub2"},{"binary_version":"2.04-1ubuntu26.2","binary_name":"grub2-common"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-4432-2.json","cves_map":{"ecosystem":"Ubuntu:20.04:LTS","cves":[]}}},{"package":{"name":"grub2-signed","ecosystem":"Ubuntu:20.04:LTS","purl":"pkg:deb/ubuntu/grub2-signed@1.142.4?arch=source&distro=focal"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.142.4"}]}],"versions":["1.128","1.129","1.130","1.131","1.133","1.134","1.135","1.136","1.137","1.138","1.139","1.140","1.141","1.142","1.142.1","1.142.3"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_version":"1.142.4+2.04-1ubuntu26.2","binary_name":"grub-efi-amd64-signed"},{"binary_version":"1.142.4+2.04-1ubuntu26.2","binary_name":"grub-efi-arm64-signed"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-4432-2.json","cves_map":{"ecosystem":"Ubuntu:20.04:LTS","cves":[]}}}],"schema_version":"1.7.3"}