Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/grub2@0?distro=trixie
purl pkg:deb/debian/grub2@0?distro=trixie
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (9)
Vulnerability Summary Aliases
VCID-4nrc-eeyb-uqaz grub2: bypass the GRUB password protection feature CVE-2023-4001
VCID-7m7x-bjrn-fkgg grub2: grub2 allows bypassing TPM-bound disk encryption on SL(E)M encrypted Images CVE-2024-49504
VCID-ctvs-7qdg-ebh3 grub2: modules built in on EFI builds that allow loading arbitrary code, circumventing secure boot CVE-2015-5281
VCID-gjnt-nd6z-v3hf grub2: grub2-set-bootflag utility causes grubenv corruption rendering the system non-bootable CVE-2019-14865
VCID-hn7g-vvzw-c7g5 A Insecure Temporary File vulnerability in grub-once of grub2 in SUSE Linux Enterprise Server 15 SP4, openSUSE Factory allows local attackers to truncate arbitrary files. This issue affects: SUSE Linux Enterprise Server 15 SP4 grub2 versions prior to 2.06-150400.7.1. SUSE openSUSE Factory grub2 versions prior to 2.06-18.1. CVE-2021-46705
VCID-kf2m-fx4q-wbhz Multiple vulnerabilities have been found in GRUB, the worst might allow for circumvention of UEFI Secure Boot. CVE-2020-15705
VCID-nu7m-84c3-uyfu grub2: grub 2.05 reintroduced CVE-2020-15705 CVE-2021-3418
VCID-nyx2-qahu-w7f1 grub2: grub2-set-bootflag can be abused by local (pseudo-)users CVE-2024-1048
VCID-psu8-3m29-7udp grub2: grub-efi crashes upon `exit` CVE-2024-2312

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T13:06:52.095954+00:00 Debian Importer Fixing VCID-4nrc-eeyb-uqaz https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T12:51:13.666307+00:00 Debian Importer Fixing VCID-7m7x-bjrn-fkgg https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T12:43:22.274699+00:00 Debian Importer Fixing VCID-nyx2-qahu-w7f1 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:52:52.591385+00:00 Debian Importer Fixing VCID-gjnt-nd6z-v3hf https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:52:17.642050+00:00 Debian Importer Fixing VCID-kf2m-fx4q-wbhz https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:30:11.172230+00:00 Debian Importer Fixing VCID-ctvs-7qdg-ebh3 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:07:28.842045+00:00 Debian Importer Fixing VCID-nu7m-84c3-uyfu https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:02:37.296177+00:00 Debian Importer Fixing VCID-hn7g-vvzw-c7g5 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:49:18.442879+00:00 Debian Importer Fixing VCID-psu8-3m29-7udp https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-13T09:01:05.302321+00:00 Debian Importer Fixing VCID-4nrc-eeyb-uqaz https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:49:18.347883+00:00 Debian Importer Fixing VCID-7m7x-bjrn-fkgg https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:43:24.131249+00:00 Debian Importer Fixing VCID-nyx2-qahu-w7f1 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:06:41.892603+00:00 Debian Importer Fixing VCID-gjnt-nd6z-v3hf https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:06:18.232946+00:00 Debian Importer Fixing VCID-kf2m-fx4q-wbhz https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:20:18.976448+00:00 Debian Importer Fixing VCID-ctvs-7qdg-ebh3 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:06:45.149283+00:00 Debian Importer Fixing VCID-nu7m-84c3-uyfu https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:03:47.927085+00:00 Debian Importer Fixing VCID-hn7g-vvzw-c7g5 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T17:55:36.879907+00:00 Debian Importer Fixing VCID-psu8-3m29-7udp https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-03T07:26:08.903599+00:00 Debian Importer Fixing VCID-7m7x-bjrn-fkgg https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:26:08.172014+00:00 Debian Importer Fixing VCID-psu8-3m29-7udp https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:26:08.123777+00:00 Debian Importer Fixing VCID-nyx2-qahu-w7f1 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:26:07.978073+00:00 Debian Importer Fixing VCID-4nrc-eeyb-uqaz https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:26:07.589924+00:00 Debian Importer Fixing VCID-hn7g-vvzw-c7g5 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:26:07.312203+00:00 Debian Importer Fixing VCID-nu7m-84c3-uyfu https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:26:06.872760+00:00 Debian Importer Fixing VCID-kf2m-fx4q-wbhz https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:26:06.534530+00:00 Debian Importer Fixing VCID-gjnt-nd6z-v3hf https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:26:06.379412+00:00 Debian Importer Fixing VCID-ctvs-7qdg-ebh3 https://security-tracker.debian.org/tracker/data/json 38.1.0