VDB

GCVE-110-MAGEIA-2024-131

GCVE-110-MAGEIA-2024-131
Advisory Published
Vulnetix · Advisory published April 13, 2024
Relax-and-Recover (aka ReaR) through 2.7 creates a world-readable initrd when using GRUB_RESCUE=y. This allows local attackers to gain access to system secrets otherwise only readable by root. (CVE-2024-23301)

Affected Products

VendorProductVersionsPlatforms
Mageialibdrm0 (affected), 2.4.120-2.mga9 (unaffected)
Mageiamesa0 (affected), 24.0.5-1.mga9 (unaffected), 0 (affected), 24.0.5-1.mga9.tainted (unaffected)
Mageiarear0 (affected), 2.6-2.1.mga9 (unaffected), 0 (affected), 2.6-2.1.mga9 (unaffected)
Mageialibva-utils0 (affected), 2.21.0-1.mga9 (unaffected)
Mageialibva2.21.0-1.mga9 (unaffected), 0 (affected)

Browse GCVE Records

72,096 records in the GCVE database · Updated July 14, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›