Lucene search
OracleLinuxELSA-2020-5790HistoryJul 29, 2020 - 12:00 a.m.
grub2 security update
2020-07-2900:00:00
linux.oracle.com
16
0.002 Low
EPSS
Percentile
61.9%
[2.02-81.0.4]
- Fix CVE-2020-10713, CVE-2020-14308, CVE-2020-14309, CVE-2020-14310, CVE-2020-14311,
CVE-2020-15705, CVE-2020-15706, CVE-2020-15707 [Orabug: 31225072] - Update signing certificate for efi binaries
[2.02-0.81.0.2] - Enable common subpackage build for aarch64
- Disable RHEL patch 0183-efinet-retransmit-if-our-device-is-busy.patch to comply with UEFI spec
- increase timeout to 10ms in efinet.c, [Orabug: 27982684]
[2.02-0.81.0.1] - Update upstream references [Orabug: 30138841]
- build with the updated Oracle certificate
- Restore symlink to grub environment file, that was removed during grub2-efi update
if grub2 package is also installed on UEFI machines [Orabug: 27345750] - fix symlink removal scriptlet, to be executed only on removal [Orabug: 19231481]
- Pack files in efidir with disabled rpm verification [Orabug: 27166026]
- Fix comparison in patch for [Orabug: 18504756]
- Remove symlink to grub environment file during uninstall on EFI platforms [Orabug: 19231481]
- replace dynamic EFI boot folder path generation with predefined ‘redhat’ (Alex Burmashev)
- update Oracle Linux certificates (Alexey Petrenko)
- Put ‘with’ in menuentry instead of ‘using’ [Orabug: 18504756]
- Use different titles for UEK and RHCK kernels [Orabug: 18504756]
- changed efidir with 0700 access rights, redhat chose another approach in rhbz#1496952, [Orabug: 28622344]
- revert orabug [Orabug: 27166026] changes
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| oracle linux | 7 | src | grub2 | < 2.02-0.81.0.4.el7 | grub2-2.02-0.81.0.4.el7.src.rpm |
| oracle linux | 7 | aarch64 | grub2 | < 2.02-0.81.0.4.el7 | grub2-2.02-0.81.0.4.el7.aarch64.rpm |
| oracle linux | 7 | aarch64 | grub2-efi-aa64 | < 2.02-0.81.0.4.el7 | grub2-efi-aa64-2.02-0.81.0.4.el7.aarch64.rpm |
| oracle linux | 7 | aarch64 | grub2-efi-aa64-cdboot | < 2.02-0.81.0.4.el7 | grub2-efi-aa64-cdboot-2.02-0.81.0.4.el7.aarch64.rpm |
| oracle linux | 7 | aarch64 | grub2-tools | < 2.02-0.81.0.4.el7 | grub2-tools-2.02-0.81.0.4.el7.aarch64.rpm |
| oracle linux | 7 | aarch64 | grub2-tools-extra | < 2.02-0.81.0.4.el7 | grub2-tools-extra-2.02-0.81.0.4.el7.aarch64.rpm |
| oracle linux | 7 | aarch64 | grub2-tools-minimal | < 2.02-0.81.0.4.el7 | grub2-tools-minimal-2.02-0.81.0.4.el7.aarch64.rpm |
Related
ubuntu
ubuntu
GRUB 2 vulnerabilities
2020-07-29 00:00:00
GRUB2 regression
2020-08-04 00:00:00
nessus
nessus
RHEL 8 : grub2 (RHSA-2020:3216)
2020-07-30 00:00:00
RHEL 8 : grub2 (RHSA-2020:3227)
2020-07-30 00:00:00
RHEL 7 : grub2 (RHSA-2020:3275)
2020-08-03 00:00:00
openvas
openvas
Fedora: Security Advisory for grub2 (FEDORA-2020-41e57d7649)
2020-09-15 00:00:00
CentOS: Security Advisory for shim-unsigned-ia32 (CESA-2020:3217)
2020-07-30 00:00:00
Huawei EulerOS: Security Advisory for grub2 (EulerOS-SA-2020-2000)
2020-09-29 00:00:00
redhat
redhat
(RHSA-2020:3227) Moderate: grub2 security update
2020-07-29 19:56:15
(RHSA-2020:3275) Moderate: grub2 security and bug fix update
2020-08-03 10:37:39
(RHSA-2020:3271) Moderate: grub2 security and bug fix update
2020-08-03 10:36:06
photon
photon
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2020-2.0-0267
2020-07-30 00:00:00
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2020-1.0-0311
2020-07-30 00:00:00
Important Photon OS Security Update - PHSA-2020-0120
2020-07-23 00:00:00
fedora
fedora
[SECURITY] Fedora 31 Update: grub2-2.02-110.fc31
2020-09-27 01:05:37
[SECURITY] Fedora 32 Update: grub2-2.04-22.fc32
2020-09-14 13:26:52
qualysblog
qualysblog
centos
centos
grub2, mokutil, shim security update
2020-07-30 00:08:50
suse
suse
Security update for grub2 (important)
2020-08-08 00:00:00
Security update for grub2 (important)
2020-08-08 00:00:00
Security update for grub2 (important)
2020-08-29 00:00:00
osv
osv
grub2 - security update
2020-07-29 00:00:00
CVE-2020-14311
2020-07-31 22:15:11
CVE-2020-14310
2020-07-31 22:15:11
debian
debian
[SECURITY] [DSA 4735-1] grub2 security update
2020-07-29 16:59:52
oraclelinux
oraclelinux
grub2 security update
2020-07-29 00:00:00
grub2 security update
2020-07-29 00:00:00
f5
f5
K48187630 : Multiple grub2 vulnerabilities
2021-03-18 00:00:00
K42232641 : GRUB2 vulnerability CVE-2020-10713
2020-08-07 00:00:00
mageia
mageia
Updated grub2 packages fix security vulnerabilities
2021-07-09 01:43:19
gentoo
gentoo
GRUB: Multiple vulnerabilities
2021-04-30 00:00:00
ibm
ibm
mscve
mscve
Microsoft Guidance for Addressing Security Feature Bypass in GRUB
2020-07-29 07:00:00
redos
redos
ROS-20220920-01
2022-09-20 00:00:00
hp
hp
HPSBHF03678 rev. 2 - GRUB2 Bootloader Arbitrary Code Execution
2020-07-25 00:00:00
ics
ics
Hitachi Energy APM Edge (Update A)
2022-10-18 12:00:00
redhatcve
redhatcve
cbl_mariner
cbl_mariner
CVE-2020-14308 affecting package grub2 for versions less than 2.06~rc1-7
2022-04-26 20:17:11
CVE-2020-14308 affecting package grub2 2.06~rc1-10
2021-05-06 23:56:52
CVE-2020-14310 affecting package grub2 for versions less than 2.06~rc1-7
2022-04-26 20:17:11
alpinelinux
alpinelinux
cve
cve
nvd
nvd
debiancve
debiancve
prion
prion
ubuntucve
ubuntucve
cvelist
cvelist
CVE-2020-15707 GRUB2 contained integer overflows when handling the initrd command, leading to a heap-based buffer overflow.
2020-07-29 00:00:00
CVE-2020-14310
2020-07-31 20:55:55
CVE-2020-14308
2020-07-29 19:03:41
veracode
veracode
Denial Of Service (DoS)
2020-07-30 02:02:33
Denial Of Service (DoS)
2020-07-30 02:02:34
Denial Of Service (DoS)
2020-07-30 02:02:32
checkpoint_security
checkpoint_security
lenovo
lenovo
GRUB2 Vulnerability – AKA
2020-07-30 15:15:08
cert
cert
GRUB2 bootloader is vulnerable to buffer overflow
2020-07-29 00:00:00