CVE-2024-45774

Grub2: reader/jpeg: heap oob write during jpeg parsing

Description

A flaw was found in grub2. A specially crafted JPEG file can cause the JPEG parser of grub2 to incorrectly check the bounds of its internal buffers, resulting in an out-of-bounds write. The possibility of overwriting sensitive information to bypass secure boot protections is not discarded.

Remediation

Workaround:

  • Do not process untrusted JPEG files with grub2.

Category

6.7
CVSS
Severity: Medium
CVSS 3.1 •
EPSS 0.03%
Vendor Advisory redhat.com
Affected: Red Hat Red Hat Enterprise Linux 9
Affected: Red Hat Red Hat Enterprise Linux 10
Affected: Red Hat Red Hat Enterprise Linux 7
Affected: Red Hat Red Hat Enterprise Linux 8
Affected: Red Hat Red Hat OpenShift Container Platform 4
Published at:
Updated at:

References

Link Tags
https://access.redhat.com/errata/RHSA-2025:6990 vendor advisory
https://access.redhat.com/security/cve/CVE-2024-45774 vdb entry
https://bugzilla.redhat.com/show_bug.cgi?id=2337461 issue tracking
https://lists.gnu.org/archive/html/grub-devel/2025-02/msg00024.html

Frequently Asked Questions

What is the severity of CVE-2024-45774?
CVE-2024-45774 has been scored as a medium severity vulnerability.
How to fix CVE-2024-45774?
As a workaround for remediating CVE-2024-45774: Do not process untrusted JPEG files with grub2.
Is CVE-2024-45774 being actively exploited in the wild?
As for now, there are no information to confirm that CVE-2024-45774 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2024-45774?
CVE-2024-45774 affects Red Hat Red Hat Enterprise Linux 9, Red Hat Red Hat Enterprise Linux 10, Red Hat Red Hat Enterprise Linux 7, Red Hat Red Hat Enterprise Linux 8, Red Hat Red Hat OpenShift Container Platform 4.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.