VulnerableCode Package Details - pkg:deb/debian/grub2@2.12-9%2Bdeb13u1

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:deb/debian/grub2@2.12-9%2Bdeb13u1

Essentials
History (21)

purl	pkg:deb/debian/grub2@2.12-9%2Bdeb13u1

Next non-vulnerable version	2.14-2
Latest non-vulnerable version	2.14-2
Risk	3.5

Vulnerabilities affecting this package (7)

Vulnerability	Summary	Fixed by
VCID-1tdk-6d8a-m7h8 Aliases: CVE-2025-61662	grub2: Missing unregister call for gettext command may lead to use-after-free	2.14-2 Affected by 0 other vulnerabilities.
VCID-53x3-83by-gueq Aliases: CVE-2025-54771	grub2: Use-after-free in grub_file_close()	2.14-2 Affected by 0 other vulnerabilities.
VCID-c2vg-36gb-bqas Aliases: CVE-2025-61664	grub2: Missing unregister call for normal_exit command may lead to use-after-free	2.14-2 Affected by 0 other vulnerabilities.
VCID-gaet-924c-57dv Aliases: CVE-2025-54770	grub2: Use-after-free in net_set_vlan	2.14-2 Affected by 0 other vulnerabilities.
VCID-swtj-9pmu-4ugn Aliases: CVE-2025-4382	grub2: grub allow access to encrypted device through CLI once root device is unlocked via TPM	2.14~git20250718.0e36779-2 Affected by 6 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 2.14-2 Affected by 0 other vulnerabilities.
VCID-ur99-cm1x-cfdm Aliases: CVE-2025-61663	grub2: Missing unregister call for normal commands may lead to use-after-free	2.14-2 Affected by 0 other vulnerabilities.
VCID-wy3p-p9zf-r7ef Aliases: CVE-2025-61661	grub2: grub2: Out-of-bounds write via malicious USB device	2.14-2 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T12:08:15.089553+00:00	Debian Importer	Affected by	VCID-c2vg-36gb-bqas	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T12:02:51.229310+00:00	Debian Importer	Affected by	VCID-1tdk-6d8a-m7h8	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T11:40:38.332033+00:00	Debian Importer	Affected by	VCID-53x3-83by-gueq	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T11:24:25.287854+00:00	Debian Importer	Affected by	VCID-wy3p-p9zf-r7ef	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:51:20.593215+00:00	Debian Importer	Affected by	VCID-gaet-924c-57dv	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:29:07.177133+00:00	Debian Importer	Affected by	VCID-swtj-9pmu-4ugn	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:23:03.418031+00:00	Debian Importer	Affected by	VCID-ur99-cm1x-cfdm	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-13T08:17:57.016909+00:00	Debian Importer	Affected by	VCID-c2vg-36gb-bqas	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T08:13:51.130683+00:00	Debian Importer	Affected by	VCID-1tdk-6d8a-m7h8	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:57:20.298701+00:00	Debian Importer	Affected by	VCID-53x3-83by-gueq	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:46:13.211804+00:00	Debian Importer	Affected by	VCID-wy3p-p9zf-r7ef	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:21:04.189895+00:00	Debian Importer	Affected by	VCID-gaet-924c-57dv	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T18:19:31.513739+00:00	Debian Importer	Affected by	VCID-swtj-9pmu-4ugn	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T18:15:57.290375+00:00	Debian Importer	Affected by	VCID-ur99-cm1x-cfdm	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-08T19:31:26.690326+00:00	Debian Importer	Affected by	VCID-c2vg-36gb-bqas	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-08T19:28:49.416370+00:00	Debian Importer	Affected by	VCID-1tdk-6d8a-m7h8	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-08T19:18:01.157257+00:00	Debian Importer	Affected by	VCID-53x3-83by-gueq	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-08T19:09:50.671645+00:00	Debian Importer	Affected by	VCID-wy3p-p9zf-r7ef	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-08T18:53:09.163549+00:00	Debian Importer	Affected by	VCID-gaet-924c-57dv	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-04T18:05:11.545754+00:00	Debian Importer	Affected by	VCID-swtj-9pmu-4ugn	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-04T18:02:53.468274+00:00	Debian Importer	Affected by	VCID-ur99-cm1x-cfdm	https://security-tracker.debian.org/tracker/data/json	38.1.0