[Bug 2012972] Re: grub2 bug preventing loading kernels

[Julian Andres Klode]

This needs a lot more investigation.

Marking this as private security as we end up with an underflow in the
length argument.

Installing multiple versions of Ubuntu in parallel is not recommended,
they will go back and forth clobbering each other's grubs, consider
using a VM.

** Changed in: grub2 (Ubuntu)
   Importance: Undecided => Low

** Information type changed from Public to Private Security

** Changed in: grub2 (Ubuntu)
       Status: New => Incomplete

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to grub2 in Ubuntu.
https://bugs.launchpad.net/bugs/2012972

Title:
  grub2 bug preventing loading kernels

Status in grub2 package in Ubuntu:
  Incomplete

Bug description:
  Hello everyone,

  I found a critical bug in your latest version of grub2
  (2.06-2ubuntu7.1) that prevents loading many types of kernel. After
  selecting kernel to load from the menu the program hangs infinitely on
  black screen / background image without displaying any kind of error
  message.

  I attached a proposed fix.

  In some kernels header size by specification can be less than "sizeof"
  header struct. In original GRUB 2.06 source code there is same
  condition which is missing in your version.

  Here is a link to my forum post
  https://ubuntuforums.org/showthread.php?t=2485293

  You're welcome to contact me for more info,

  Cheers,

  Aleksandar

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/grub2/+bug/2012972/+subscriptions