CVE-2022-28737
Summary
| CVE | CVE-2022-28737 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2023-07-20 01:15:00 UTC |
| Updated | 2023-07-28 15:33:00 UTC |
| Description | There's a possible overflow in handle_image() when shim tries to load and execute crafted EFI executables; The handle_image() function takes into account the SizeOfRawData field from each section to be loaded. An attacker can leverage this to perform out-of-bound writes into memory. Arbitrary code execution is not discarded in such scenario. |
Risk And Classification
Problem Types: CWE-787
NVD Known Affected Configurations (CPE 2.3)
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| CVE - CVE-2022-28737 | MISC | cve.mitre.org | |
| oss-security - [SECURITY PATCH 00/30] Multiple GRUB2 vulnerabilities - 2022/06/07 round | MISC | www.openwall.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 159881 Oracle Enterprise Linux Security Update for shim (ELSA-2022-9465)
- 159887 Oracle Enterprise Linux Security Update for shim-signed (ELSA-2022-9466)
- 159943 Oracle Enterprise Linux Security Update for grub2 (ELSA-2022-5099)
- 159967 Oracle Enterprise Linux Security Update for grub2, mokutil, shim, and shim-unsigned-x64 (ELSA-2022-5095)
- 159985 Oracle Enterprise Linux Security Update for grub2 (ELSA-2022-9596)
- 159986 Oracle Enterprise Linux Security Update for grub2 (ELSA-2022-9595)
- 181578 Debian Security Update for shim (CVE-2022-28737)
- 240473 Red Hat Update for grub2, mokutil, shim, and shim-unsigned-x64 (RHSA-2022:5100)
- 240474 Red Hat Update for grub2, mokutil, shim, and shim-unsigned-x64 (RHSA-2022:5099)
- 240476 Red Hat Update for grub2, mokutil, shim, and shim-unsigned-x64 (RHSA-2022:5096)
- 240477 Red Hat Update for grub2, mokutil, shim, and shim-unsigned-x64 (RHSA-2022:5095)
- 282827 Fedora Security Update for shim (FEDORA-2022-98830efc68)
- 377130 Alibaba Cloud Linux Security Update for grub2, mokutil, shim, and shim-unsigned-x64 (ALINUX3-SA-2022:0134)
- 377622 Alibaba Cloud Linux Security Update for grub2, mokutil, shim, and shim-unsigned-x64 (ALINUX3-SA-2022:0164)
- 672038 EulerOS Security Update for shim (EulerOS-SA-2022-2280)
- 672050 EulerOS Security Update for shim (EulerOS-SA-2022-2235)
- 672117 EulerOS Security Update for shim (EulerOS-SA-2022-2333)
- 672129 EulerOS Security Update for shim (EulerOS-SA-2022-2304)
- 672231 EulerOS Security Update for shim (EulerOS-SA-2022-2635)
- 672256 EulerOS Security Update for shim (EulerOS-SA-2022-2667)
- 672311 EulerOS Security Update for shim (EulerOS-SA-2022-2699)
- 710619 Gentoo Linux GRUB Multiple Vulnerabilities (GLSA 202209-12)
- 753881 SUSE Enterprise Linux Security Update for shim (SUSE-SU-2023:1702-1)
- 753962 SUSE Enterprise Linux Security Update for shim (SUSE-SU-2023:2091-1)
- 753969 SUSE Enterprise Linux Security Update for shim (SUSE-SU-2023:2086-1)
- 754060 SUSE Enterprise Linux Security Update for shim (SUSE-SU-2023:2084-1)
- 755901 SUSE Enterprise Linux Security Update for shim (SUSE-SU-2023:1863-1)
- 940639 AlmaLinux Security Update for grub2, (ALSA-2022:5095)
- 940640 AlmaLinux Security Update for grub2, (ALSA-2022:5099)
- 960538 Rocky Linux Security Update for grub2, (RLSA-2022:5099)