Описание
ELSA-2015-2401: grub2 security, bug fix, and enhancement update (LOW)
[2.02-0.29.0.1]
- Fix comparison in patch for 18504756
- Remove symlink to grub environment file during uninstall on EFI platforms [bug 19231481]
- update Oracle Linux certificates (Alexey Petrenko)
- Put 'with' in menuentry instead of 'using' [bug 18504756]
- Use different titles for UEK and RHCK kernels [bug 18504756]
[2.02-0.29]
- Fix DHCP6 timeouts due to failed network stack once more. Resolves: rhbz#1267139
[2.02-0.28]
- Once again, rebuild for the right build target. Resolves: CVE-2015-5281
[2.02-0.27]
- Remove multiboot and multiboot2 modules from the .efi builds; they should never have been there. Resolves: CVE-2015-5281
[2.02-0.26]
- Be more aggressive about trying to make sure we use the configured SNP device in UEFI. Resolves: rhbz#1257475
[2.02-0.25]
- Force file sync to disk on ppc64le machines. Resolves: rhbz#1212114
[2.02-0.24]
- Undo 0.23 and fix it a different way. Resolves: rhbz#1124074
[2.02-0.23]
- Reverse kernel sort order so they're displayed correctly. Resolves: rhbz#1124074
[2.02-0.22]
- Make upgrades work reasonably well with grub2-setpassword . Related: rhbz#985962
[2.02-0.21]
- Add a simpler grub2 password config tool Related: rhbz#985962
- Some more coverity nits.
[2.02-0.20]
- Deal with some coverity nits. Related: rhbz#1215839 Related: rhbz#1124074
[2.02-0.19]
- Rebuild for Aarch64
- Deal with some coverity nits. Related: rhbz#1215839 Related: rhbz#1124074
[2.02-0.18]
- Update for an rpmdiff problem with one of the man pages. Related: rhbz#1124074
Обновленные пакеты
Oracle Linux 7
Oracle Linux x86_64
grub2
2.02-0.29.0.1.el7
grub2-efi
2.02-0.29.0.1.el7
grub2-efi-modules
2.02-0.29.0.1.el7
grub2-tools
2.02-0.29.0.1.el7
Связанные CVE
Связанные уязвимости
The grub2 package before 2.02-0.29 in Red Hat Enterprise Linux (RHEL) 7, when used on UEFI systems, allows local users to bypass intended Secure Boot restrictions and execute non-verified code via a crafted (1) multiboot or (2) multiboot2 module in the configuration file or physically proximate attackers to bypass intended Secure Boot restrictions and execute non-verified code via the (3) boot menu.
The grub2 package before 2.02-0.29 in Red Hat Enterprise Linux (RHEL) 7, when used on UEFI systems, allows local users to bypass intended Secure Boot restrictions and execute non-verified code via a crafted (1) multiboot or (2) multiboot2 module in the configuration file or physically proximate attackers to bypass intended Secure Boot restrictions and execute non-verified code via the (3) boot menu.
The grub2 package before 2.02-0.29 in Red Hat Enterprise Linux (RHEL) 7, when used on UEFI systems, allows local users to bypass intended Secure Boot restrictions and execute non-verified code via a crafted (1) multiboot or (2) multiboot2 module in the configuration file or physically proximate attackers to bypass intended Secure Boot restrictions and execute non-verified code via the (3) boot menu.
The grub2 package before 2.02-0.29 in Red Hat Enterprise Linux (RHEL) ...
The grub2 package before 2.02-0.29 in Red Hat Enterprise Linux (RHEL) 7, when used on UEFI systems, allows local users to bypass intended Secure Boot restrictions and execute non-verified code via a crafted (1) multiboot or (2) multiboot2 module in the configuration file or physically proximate attackers to bypass intended Secure Boot restrictions and execute non-verified code via the (3) boot menu.