VulnerableCode Package Details - pkg:rpm/redhat/grub2@1:2.02-0.86?arch=el7_4

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:rpm/redhat/grub2@1:2.02-0.86?arch=el7_4

Essentials
History (8)

purl	pkg:rpm/redhat/grub2@1:2.02-0.86?arch=el7_4

Next non-vulnerable version	None.
Latest non-vulnerable version	None.
Risk

Vulnerabilities affecting this package (8)

Vulnerability	Summary	Fixed by
VCID-87cp-pncq-w3gj Aliases: CVE-2020-14309	grub2: Integer overflow in grub_squash_read_symlink may lead to heap-based buffer overflow	There are no reported fixed by versions.
VCID-9sj5-mctd-h3hs Aliases: CVE-2020-15705	grub2: Fail kernel validation without shim protocol	There are no reported fixed by versions.
VCID-a9mk-32xg-abbw Aliases: CVE-2020-14310	grub2: Integer overflow read_section_as_string may lead to heap-based buffer overflow	There are no reported fixed by versions.
VCID-hcvr-hu4f-4fhs Aliases: CVE-2020-14308	grub2: grub_malloc does not validate allocation size allowing for arithmetic overflow and subsequent heap-based buffer overflow	There are no reported fixed by versions.
VCID-r7qe-2aqz-qbeh Aliases: CVE-2020-15707	grub2: Integer overflow in initrd size handling	There are no reported fixed by versions.
VCID-rprf-bmek-pkdk Aliases: CVE-2020-14311	grub2: Integer overflow in grub_ext2_read_link leads to heap-based buffer overflow	There are no reported fixed by versions.
VCID-s1wx-wnsf-a3eh Aliases: CVE-2020-15706	grub2: Use-after-free redefining a function whilst the same function is already executing	There are no reported fixed by versions.
VCID-ucvc-5gpr-dbct Aliases: CVE-2020-10713	grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process	There are no reported fixed by versions.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-05-29T09:19:58.439467+00:00	RedHat Importer	Affected by	VCID-r7qe-2aqz-qbeh	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-15707.json	38.6.0
2026-05-29T09:19:57.762423+00:00	RedHat Importer	Affected by	VCID-s1wx-wnsf-a3eh	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-15706.json	38.6.0
2026-05-29T09:19:57.074971+00:00	RedHat Importer	Affected by	VCID-9sj5-mctd-h3hs	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-15705.json	38.6.0
2026-05-29T09:19:56.393818+00:00	RedHat Importer	Affected by	VCID-a9mk-32xg-abbw	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14310.json	38.6.0
2026-05-29T09:19:55.658436+00:00	RedHat Importer	Affected by	VCID-87cp-pncq-w3gj	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14309.json	38.6.0
2026-05-29T09:19:54.984913+00:00	RedHat Importer	Affected by	VCID-rprf-bmek-pkdk	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14311.json	38.6.0
2026-05-29T09:19:54.247214+00:00	RedHat Importer	Affected by	VCID-hcvr-hu4f-4fhs	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14308.json	38.6.0
2026-05-29T09:19:53.452316+00:00	RedHat Importer	Affected by	VCID-ucvc-5gpr-dbct	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-10713.json	38.6.0