VulnerableCode Package Details - pkg:deb/debian/grub2@2.06-3~deb11u2

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:deb/debian/grub2@2.06-3~deb11u2

Essentials
History (33)

purl	pkg:deb/debian/grub2@2.06-3~deb11u2

Next non-vulnerable version	2.12-1~bpo12+1
Latest non-vulnerable version	2.14-2
Risk	3.7

Vulnerabilities affecting this package (4)

Vulnerability	Summary	Fixed by
VCID-33ec-pjax-nkak Aliases: CVE-2022-3775	Multiple vulnerabilities have been discoverd in GRUB, which may lead to secure boot circumvention or code execution.	2.06-3~deb11u6 Affected by 30 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-8kh4-ym2x-k3he Aliases: CVE-2023-4693	grub2: out-of-bounds read at fs/ntfs.c	2.06-3~deb11u6 Affected by 30 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-9mut-ye1e-pbdx Aliases: CVE-2023-4692	grub2: Out-of-bounds write at fs/ntfs.c may lead to unsigned code execution	2.06-3~deb11u6 Affected by 30 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-gjbg-nve3-m3gy Aliases: CVE-2022-2601	Multiple vulnerabilities have been discoverd in GRUB, which may lead to secure boot circumvention or code execution.	2.06-3~deb11u6 Affected by 30 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (7)

Vulnerability	Summary	Aliases
VCID-2f6m-msj2-2fgy	Multiple vulnerabilities have been discovered in GRUB, the worst of which may allow for secureboot bypass.	CVE-2021-3697
VCID-6jes-p579-uyg3	Multiple vulnerabilities have been discovered in GRUB, the worst of which may allow for secureboot bypass.	CVE-2022-28735
VCID-8zje-6cet-h3a4	Multiple vulnerabilities have been discovered in GRUB, the worst of which may allow for secureboot bypass.	CVE-2021-3695
VCID-9dkn-kkgd-37ce	Multiple vulnerabilities have been discovered in GRUB, the worst of which may allow for secureboot bypass.	CVE-2022-28733
VCID-g3tz-5rzv-wkgk	Multiple vulnerabilities have been discovered in GRUB, the worst of which may allow for secureboot bypass.	CVE-2022-28734
VCID-nn2e-jq31-n7bc	Multiple vulnerabilities have been discovered in GRUB, the worst of which may allow for secureboot bypass.	CVE-2021-3696
VCID-wp1a-2ueg-mych	Multiple vulnerabilities have been discovered in GRUB, the worst of which may allow for secureboot bypass.	CVE-2022-28736

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-15T23:17:49.141494+00:00	Debian Oval Importer	Fixing	VCID-8zje-6cet-h3a4	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T21:32:50.683075+00:00	Debian Oval Importer	Fixing	VCID-wp1a-2ueg-mych	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T21:16:09.236819+00:00	Debian Oval Importer	Fixing	VCID-g3tz-5rzv-wkgk	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T20:19:51.506525+00:00	Debian Oval Importer	Fixing	VCID-6jes-p579-uyg3	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T19:57:40.150257+00:00	Debian Oval Importer	Affected by	VCID-9mut-ye1e-pbdx	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T18:47:36.709290+00:00	Debian Oval Importer	Affected by	VCID-33ec-pjax-nkak	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T18:22:03.713363+00:00	Debian Oval Importer	Affected by	VCID-gjbg-nve3-m3gy	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T17:35:08.364109+00:00	Debian Oval Importer	Fixing	VCID-2f6m-msj2-2fgy	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T17:23:32.252835+00:00	Debian Oval Importer	Affected by	VCID-8kh4-ym2x-k3he	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T16:16:15.893406+00:00	Debian Oval Importer	Fixing	VCID-9dkn-kkgd-37ce	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T15:30:26.419033+00:00	Debian Oval Importer	Fixing	VCID-nn2e-jq31-n7bc	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-11T22:53:28.564689+00:00	Debian Oval Importer	Fixing	VCID-8zje-6cet-h3a4	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T21:11:52.431258+00:00	Debian Oval Importer	Fixing	VCID-wp1a-2ueg-mych	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T20:55:52.467456+00:00	Debian Oval Importer	Fixing	VCID-g3tz-5rzv-wkgk	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T20:01:32.819700+00:00	Debian Oval Importer	Fixing	VCID-6jes-p579-uyg3	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T19:39:40.337249+00:00	Debian Oval Importer	Affected by	VCID-9mut-ye1e-pbdx	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T18:32:18.370799+00:00	Debian Oval Importer	Affected by	VCID-33ec-pjax-nkak	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T18:07:13.354144+00:00	Debian Oval Importer	Affected by	VCID-gjbg-nve3-m3gy	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T17:21:25.983591+00:00	Debian Oval Importer	Fixing	VCID-2f6m-msj2-2fgy	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T17:09:56.963285+00:00	Debian Oval Importer	Affected by	VCID-8kh4-ym2x-k3he	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T16:03:36.072883+00:00	Debian Oval Importer	Fixing	VCID-9dkn-kkgd-37ce	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T15:18:28.069280+00:00	Debian Oval Importer	Fixing	VCID-nn2e-jq31-n7bc	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-08T22:27:55.670639+00:00	Debian Oval Importer	Fixing	VCID-8zje-6cet-h3a4	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T20:50:50.153717+00:00	Debian Oval Importer	Fixing	VCID-wp1a-2ueg-mych	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T20:35:15.020098+00:00	Debian Oval Importer	Fixing	VCID-g3tz-5rzv-wkgk	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T19:43:15.792707+00:00	Debian Oval Importer	Fixing	VCID-6jes-p579-uyg3	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T19:22:43.221245+00:00	Debian Oval Importer	Affected by	VCID-9mut-ye1e-pbdx	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T18:17:26.952820+00:00	Debian Oval Importer	Affected by	VCID-33ec-pjax-nkak	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T17:53:40.074560+00:00	Debian Oval Importer	Affected by	VCID-gjbg-nve3-m3gy	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T17:09:48.818679+00:00	Debian Oval Importer	Fixing	VCID-2f6m-msj2-2fgy	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T16:59:01.118416+00:00	Debian Oval Importer	Affected by	VCID-8kh4-ym2x-k3he	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T15:56:28.240138+00:00	Debian Oval Importer	Fixing	VCID-9dkn-kkgd-37ce	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T15:13:11.539097+00:00	Debian Oval Importer	Fixing	VCID-nn2e-jq31-n7bc	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0