Lucene search
OracleLinuxELSA-2021-9076HistoryMar 02, 2021 - 12:00 a.m.
grub2 security update
2021-03-0200:00:00
linux.oracle.com
43
grub2
security update
cve fixes
grubx64.efi
signing certificate
efi binaries
menu entry
multiboot2
symlink
environment file
uefi platforms
comparison patch
dynamic efi boot
kernel titles
EPSS
0.002
Percentile
58.6%
[2.02-0.87.0.7]
- Fix CVE-2020-14372 CVE-2020-25632 CVE-2020-25647 CVE-2020-27749
CVE-2020-27779 CVE-2021-20225 CVE-2021-20233 [Orabug: 32530657] - Fix various coverity issues [Orabug: 32530657]
- Add SBAT metadata to grubx64.efi [Orabug: 32530657]
[2.02-0.87.0.5] - Use similar format for menu entry in grub environment block
- config file. [Orabug: 32172943]
[2.02-0.87.0.3] - Fix degradation in multiboot2 code [Orabug: 32069510]
[2.02-0.87.0.1] - Update signing certificate for efi binaries
- Update upstream references [Orabug: 30138841]
- Restore symlink to grub environment file, that was removed during grub2-efi update
if grub2 package is also installed on UEFI machines [Orabug: 27345750] - fix symlink removal scriptlet, to be executed only on removal [Orabug: 19231481]
- Fix comparison in patch for [Orabug: 18504756]
- Remove symlink to grub environment file during uninstall on EFI platforms [Orabug: 19231481]
- replace dynamic EFI boot folder path generation with predefined ‘redhat’ (Alex Burmashev)
- Put ‘with’ in menuentry instead of ‘using’ [Orabug: 18504756]
- Use different titles for UEK and RHCK kernels [Orabug: 18504756]
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| oracle linux | 7 | src | grub2 | < 2.02-0.87.0.7.el7 | grub2-2.02-0.87.0.7.el7.src.rpm |
| oracle linux | 7 | aarch64 | grub2 | < 2.02-0.87.0.7.el7 | grub2-2.02-0.87.0.7.el7.aarch64.rpm |
| oracle linux | 7 | noarch | grub2-common | < 2.02-0.87.0.7.el7 | grub2-common-2.02-0.87.0.7.el7.noarch.rpm |
| oracle linux | 7 | aarch64 | grub2-efi-aa64 | < 2.02-0.87.0.7.el7 | grub2-efi-aa64-2.02-0.87.0.7.el7.aarch64.rpm |
| oracle linux | 7 | aarch64 | grub2-efi-aa64-cdboot | < 2.02-0.87.0.7.el7 | grub2-efi-aa64-cdboot-2.02-0.87.0.7.el7.aarch64.rpm |
| oracle linux | 7 | aarch64 | grub2-tools | < 2.02-0.87.0.7.el7 | grub2-tools-2.02-0.87.0.7.el7.aarch64.rpm |
| oracle linux | 7 | aarch64 | grub2-tools-extra | < 2.02-0.87.0.7.el7 | grub2-tools-extra-2.02-0.87.0.7.el7.aarch64.rpm |
| oracle linux | 7 | aarch64 | grub2-tools-minimal | < 2.02-0.87.0.7.el7 | grub2-tools-minimal-2.02-0.87.0.7.el7.aarch64.rpm |
| oracle linux | 7 | src | grub2 | < 2.02-0.87.0.7.el7 | grub2-2.02-0.87.0.7.el7.src.rpm |
| oracle linux | 7 | x86_64 | grub2 | < 2.02-0.87.0.7.el7 | grub2-2.02-0.87.0.7.el7.x86_64.rpm |
Related
openvas
openvas
Fedora: Security Advisory for shim-unsigned-aarch64 (FEDORA-2021-cab258a413)
2021-04-24 00:00:00
openSUSE: Security Advisory for grub2 (openSUSE-SU-2021:0462-1)
2021-04-16 00:00:00
Fedora: Security Advisory for efi-rpm-macros (FEDORA-2021-cab258a413)
2021-04-24 00:00:00
redhat
redhat
(RHSA-2021:2566) Moderate: fwupd security update
2021-06-29 13:41:47
(RHSA-2021:0703) Moderate: grub2 security update
2021-03-02 18:59:01
(RHSA-2021:3675) Moderate: shim and fwupd security update
2021-09-28 13:52:23
oraclelinux
oraclelinux
grub2 security update
2021-03-05 00:00:00
grub2 security update
2021-03-02 00:00:00
grub2 security update
2021-03-05 00:00:00
nessus
nessus
RHEL 7 : grub2 (RHSA-2021:0704)
2021-03-02 00:00:00
Debian DSA-4867-1 : grub2 - security update
2021-03-03 00:00:00
Oracle Linux 8 : SUMM: / grub2 (ELSA-2021-0696)
2021-03-05 00:00:00
fedora
fedora
[SECURITY] Fedora 34 Update: grub2-2.06~rc1-2.fc34
2021-03-26 00:18:32
[SECURITY] Fedora 34 Update: efi-rpm-macros-5-2.fc34
2021-04-23 21:04:07
[SECURITY] Fedora 34 Update: shim-unsigned-aarch64-15.4-1.fc34
2021-04-23 21:04:07
rocky
rocky
fwupd security update
2021-06-29 13:41:47
shim security update
2021-05-18 05:57:10
amazon
amazon
Medium: grub2
2021-07-14 20:30:00
Medium: grub2
2021-07-14 20:30:00
osv
osv
Moderate: shim security update
2021-05-18 05:57:10
grub2 - security update
2021-03-02 00:00:00
Moderate: fwupd security update
2021-06-29 13:41:47
almalinux
almalinux
Moderate: fwupd security update
2021-06-29 13:41:47
Moderate: shim security update
2021-05-18 05:57:10
Moderate: grub2 security update
2021-03-02 18:54:21
suse
suse
Security update for grub2 (important)
2021-03-22 00:00:00
debian
debian
[SECURITY] [DSA 4867-1] grub2 security update
2021-03-02 18:11:33
[SECURITY] [DSA 4867-1] grub2 security update
2021-03-02 18:11:33
archlinux
archlinux
[ASA-202106-43] grub: multiple issues
2021-06-15 00:00:00
ubuntu
ubuntu
GRUB 2 vulnerabilities
2021-06-18 00:00:00
ibm
ibm
hp
hp
HP PC UEFI Secure Boot Database Update July 2022
2022-07-21 00:00:00
HPSBHF03678 rev. 2 - GRUB2 Bootloader Arbitrary Code Execution
2020-07-25 00:00:00
photon
photon
rosalinux
rosalinux
Advisory ROSA-SA-2021-1849
2021-07-02 17:01:29
Advisory ROSA-SA-2023-2300
2023-12-05 10:31:19
mageia
mageia
Updated grub2 packages fix security vulnerabilities
2021-07-09 01:43:19
gentoo
gentoo
GRUB: Multiple vulnerabilities
2021-04-30 00:00:00
githubexploit
githubexploit
Exploit for Use After Free in Gnu Grub2
2022-07-19 18:56:51
Exploit for Incomplete List of Disallowed Inputs in Gnu Grub2
2021-04-19 23:36:25
redos
redos
ROS-20220920-01
2022-09-20 00:00:00
mscve
mscve
Microsoft Guidance for Addressing Security Feature Bypass in GRUB
2020-07-29 07:00:00
debiancve
debiancve
cbl_mariner
cbl_mariner
CVE-2020-27749 affecting package grub2 for versions less than 2.06~rc1-7
2022-04-26 20:17:11
CVE-2020-25632 affecting package grub2 for versions less than 2.06~rc1-7
2022-04-26 20:17:11
CVE-2020-27749 affecting package grub2 2.06~rc1-10
2021-05-06 23:56:52
veracode
veracode
Privilege Escalation
2021-03-03 05:51:57
Arbitrary Code Execution
2021-03-03 00:36:45
Arbitrary Code Execution
2021-03-03 06:00:37
prion
prion
Design/Logic Flaw
2021-03-03 17:15:00
Design/Logic Flaw
2021-03-03 17:15:00
Design/Logic Flaw
2021-03-03 17:15:00
redhatcve
redhatcve
nvd
nvd
cvelist
cvelist
cve
cve
alpinelinux
alpinelinux
ubuntucve
ubuntucve