CVE-2009-4128 (retired)

Priority
Description
GNU GRand Unified Bootloader (GRUB) 2 1.97 only compares the submitted
portion of a password with the actual password, which makes it easier for
physically proximate attackers to conduct brute force attacks and bypass
authentication by submitting a password whose length is 1.
Notes
 mdeslaur> grub2 only
Assigned-to
jdstrand
Package
Source: grub2 (LP Ubuntu Debian)
Upstream:pending (1.97+experimental.20091110-1)
More Information

Updated: 2019-03-26 11:49:41 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)