Bug#991691: Possible CVE-2014-5461 in grub2

Movses Tovmasyan movsestovmasyan10 at gmail.com
Fri Jul 30 11:35:58 BST 2021


Package: grub2
Version: 2.02~beta3-5+deb9u2
Tags: patch

grub2 uses the obsolete version of minilua
(single-file port of Lua) which has CVE-2014-5461
Patch attached below.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/pkg-grub-devel/attachments/20210730/c6d44338/attachment-0001.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: patch.png
Type: image/png
Size: 198479 bytes
Desc: not available
URL: <http://alioth-lists.debian.net/pipermail/pkg-grub-devel/attachments/20210730/c6d44338/attachment-0001.png>


More information about the Pkg-grub-devel mailing list