projects / grub2.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 5e21354) | patch
commands/pgp: Unregister the "check_signatures" hooks on module unload
authorB Horn <b@horn.uk>
Fri, 1 Nov 2024 19:24:29 +0000 (19:24 +0000)
committerFelix Zielcke <fzielcke@z-51.de>
Thu, 3 Jul 2025 16:35:51 +0000 (18:35 +0200)
commit7c3906064364ae78152e1bf537b2b55551ba5302
tree13c5c9cc39d1f0cff43773453a39a5894bcff1eftree | snapshot
parent5e21354d3b59f8cc920df0f6f13cc6c0b97999d8commit | diff
commands/pgp: Unregister the "check_signatures" hooks on module unload

If the hooks are not removed they can be called after the module has
been unloaded leading to an use-after-free.

Fixes: CVE-2025-0622
Reported-by: B Horn <b@horn.uk>
Signed-off-by: B Horn <b@horn.uk>
Reviewed-by: Daniel Kiper <daniel.kiper@oracle.com>
Gbp-Pq: Topic cve-2025-jan
Gbp-Pq: Name commands-pgp-Unregister-the-check_signatures-hooks-on-mod.patch
grub-core/commands/pgp.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.