Re: grub2 security problem

To: debian-user@lists.debian.org
Subject: Re: grub2 security problem
From: Teemu Likonen <tlikonen@iki.fi>
Date: Sat, 19 Dec 2015 11:42:23 +0200
Message-id: <[🔎] 87bn9mrczk.fsf@mithlond.arda>
Mail-followup-to: debian-user@lists.debian.org, tlikonen@iki.fi
In-reply-to: <[🔎] CANc=Sd1=p2WT6k3yFVxMjXGKeP3aat+sPH+WfbUiVXijWk2oSQ@mail.gmail.com> (Michael Fothergill's message of "Sat, 19 Dec 2015 09:35:57 +0000")
References: <[🔎] CANc=Sd1=p2WT6k3yFVxMjXGKeP3aat+sPH+WfbUiVXijWk2oSQ@mail.gmail.com>

Michael Fothergill [2015-12-19 09:35:57Z] wrote:

> I noticed some articles suggesting that there is a security problem in
> grub2.

> http://thehackernews.com/2015/12/hack-linux-grub-password.html
>
> Is there any substance to this?

Didn't check myself but it seems so:

https://www.debian.org/security/2015/dsa-3421
http://hmarco.org/bugs/CVE-2015-8370-Grub2-authentication-bypass.html

-- 
/// Teemu Likonen   - .-..   <https://github.com/tlikonen> //
// PGP: 4E10 55DC 84E9 DFF6 13D7 8557 719D 69D3 2453 9450 ///

Attachment: signature.asc
Description: PGP signature

Reply to:

References:
- grub2 security problem
  - From: Michael Fothergill <michael.fothergill@googlemail.com>

Prev by Date: grub2 security problem
Next by Date: Re: grub2 security problem
Previous by thread: grub2 security problem
Next by thread: Re: grub2 security problem
Index(es):
- Date
- Thread