Vulnerability DatabaseCVE-2024-45775

CVE-2024-45775:
Rocky Linux vulnerability analysis and mitigation

Overview

A vulnerability was discovered in GRUB2 (CVE-2024-45775) where the grubextcmddispatcher() function fails to check for failed memory allocation when calling grubarglist_alloc() to allocate memory for GRUB's argument list. The vulnerability was disclosed on February 18, 2025, affecting various versions of GRUB2 across multiple Linux distributions (NVD, Red Hat).

Technical details

The vulnerability stems from a missing validation check in the grubextcmddispatcher() function after calling grubarglistalloc(). When memory allocation fails, a NULL pointer is subsequently processed by the parseoption() function. The vulnerability has been assigned a CVSS v3.1 base score of 5.2 (Medium) with the vector string CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:H (OSS Security).

Impact

When exploited, this vulnerability can lead to system crashes or, in rare scenarios, corruption of the IVT (Interrupt Vector Table) data. The impact includes potential system instability and possible data integrity issues (Debian Security).

Mitigation and workarounds

A fix has been released in the GRUB2 codebase. Debian has addressed this in version 2.12-7 for the sid release. Other distributions are in the process of releasing patches. Users are advised to update their GRUB2 installations once patches are available through their respective distribution channels (Debian Security).

Additional resources

Source: This report was generated using AI

View vulnerable instances

Not a Wiz customer? See which CVEs are exploitable in your environment.

Get a CVE Assessment

5.2

Score

Published February 18, 2025

Severity MEDIUM

CNA Score 5.2

Affected Technologies

Rocky Linux
Alma Linux

Has Public Exploit No

Has CISA KEV Exploit No

CISA KEV Release Date N/A

CISA KEV Due Date N/A

Exploitation Probability Percentile (EPSS) 13.9

Exploitation Probability (EPSS) N/A

Affected packages and libraries

grub2-i386-xen-debug
grub2-x86_64-efi-extras

Sources

NVD
AlmaLinux Security Advisory
- AlmaLinux 9 Severity MEDIUMHas FixAdded at: Jul 04, 2025
CBL-Mariner
- CBL-Mariner 2.0 Severity MEDIUMHas FixAdded at: Oct 19, 2025
- CBL-Mariner 3.0 Severity MEDIUMHas FixAdded at: Oct 29, 2025
Debian Security Tracker
- Debian 11, 12 Severity MEDIUMNo FixAdded at: Feb 19, 2025
- Debian 13 Severity MEDIUMHas FixAdded at: Feb 19, 2025
- Debian 14 Severity MEDIUMHas FixAdded at: Aug 10, 2025
Echo
- Echo Severity MEDIUMHas FixAdded at: Nov 18, 2025
Photon Security Advisory
- Photon 4.0 Severity MEDIUMHas FixAdded at: Sep 03, 2025
- Photon 5.0 Severity MEDIUMHas FixAdded at: Mar 27, 2025
Red Hat Errata
- Red Hat 7, 8 Severity MEDIUMNo FixAdded at: Feb 19, 2025
- Red Hat 9 Severity MEDIUMHas FixAdded at: Feb 20, 2025
Rocky Linux Product Errata
- Rocky 9 Severity MEDIUMHas FixAdded at: Dec 07, 2025
Seal Security
- Red Hat 7 Severity MEDIUMHas FixAdded at: Nov 26, 2025
TuxCare
- CentOS 8 Severity MEDIUMHas FixAdded at: Nov 18, 2025

Get a CVE risk assessment

Get a prioritized view of CVEs in your cloud—so you can focus on what's exploitable, not just what's listed.

Request assessment

Related Rocky Linux vulnerabilities:

CVE ID	Severity	Score	Technologies	Component name	CISA KEV exploit	Has fix	Published date
CVE-2025-13020	HIGH	8.8	NixOS	MozillaFirefox-branding-upstream	No	Yes	Nov 11, 2025
CVE-2025-59088	HIGH	8.6	Rocky Linux	python3-kdcproxy	No	Yes	Nov 12, 2025
CVE-2025-13019	HIGH	8.1	NixOS	firefox-x11	No	Yes	Nov 11, 2025
CVE-2025-59089	MEDIUM	5.9	Rocky Linux	idm:DL1::bind-dyndb-ldap	No	Yes	Nov 12, 2025
CVE-2025-40185	N/A	N/A	Linux Kernel	kernel-64k-debug-modules-partner	No	Yes	Nov 12, 2025