Описание
ELSA-2020-0335: grub2 security update (MODERATE)
[2.02-78.0.3.el8_1.1]
- honor /etc/sysconfig/kernel DEFAULTKERNEL setting for BLS [Orabug: 30643497]
- set EFIDIR as redhat for additional grub2 tools [Orabug: 29875597]
- Update upstream references [Orabug: 26388226]
- Copy symvers.gz to /boot during kernel install [Orabug: 29773086]
- Insert Unbreakable Enterprise Kernel text into BLS config file [Orabug: 29417955]
- fix symlink removal scriptlet, to be executed only on removal [Orabug: 19231481]
- Fix comparison in patch for 18504756
- Remove symlink to grub environment file during uninstall on EFI platforms [Orabug: 19231481]
- update Oracle Linux certificates (Alexey Petrenko)
- Put 'with' in menuentry instead of 'using' [Orabug: 18504756]
- Use different titles for UEK and RHCK kernels [Orabug: 18504756]
[2.02-78.el8_1.1]
- grub-set-bootflag: Write new env to tmpfile and then rename (hdegoede) Resolves: CVE-2019-14865
Обновленные пакеты
Oracle Linux 8
Oracle Linux aarch64
grub2-common
2.02-78.0.3.el8_1.1
grub2-efi-aa64
2.02-78.0.3.el8_1.1
grub2-efi-aa64-cdboot
2.02-78.0.3.el8_1.1
grub2-efi-aa64-modules
2.02-78.0.3.el8_1.1
grub2-efi-ia32-modules
2.02-78.0.3.el8_1.1
grub2-efi-x64-modules
2.02-78.0.3.el8_1.1
grub2-pc-modules
2.02-78.0.3.el8_1.1
grub2-tools
2.02-78.0.3.el8_1.1
grub2-tools-extra
2.02-78.0.3.el8_1.1
grub2-tools-minimal
2.02-78.0.3.el8_1.1
Oracle Linux x86_64
grub2-common
2.02-78.0.3.el8_1.1
grub2-efi-aa64-modules
2.02-78.0.3.el8_1.1
grub2-efi-ia32
2.02-78.0.3.el8_1.1
grub2-efi-ia32-cdboot
2.02-78.0.3.el8_1.1
grub2-efi-ia32-modules
2.02-78.0.3.el8_1.1
grub2-efi-x64
2.02-78.0.3.el8_1.1
grub2-efi-x64-cdboot
2.02-78.0.3.el8_1.1
grub2-efi-x64-modules
2.02-78.0.3.el8_1.1
grub2-pc
2.02-78.0.3.el8_1.1
grub2-pc-modules
2.02-78.0.3.el8_1.1
grub2-tools
2.02-78.0.3.el8_1.1
grub2-tools-efi
2.02-78.0.3.el8_1.1
grub2-tools-extra
2.02-78.0.3.el8_1.1
grub2-tools-minimal
2.02-78.0.3.el8_1.1
Связанные CVE
Связанные уязвимости
A flaw was found in the grub2-set-bootflag utility of grub2. A local attacker could run this utility under resource pressure (for example by setting RLIMIT), causing grub2 configuration files to be truncated and leaving the system unbootable on subsequent reboots.
A flaw was found in the grub2-set-bootflag utility of grub2. A local attacker could run this utility under resource pressure (for example by setting RLIMIT), causing grub2 configuration files to be truncated and leaving the system unbootable on subsequent reboots.
A flaw was found in the grub2-set-bootflag utility of grub2. A local attacker could run this utility under resource pressure (for example by setting RLIMIT), causing grub2 configuration files to be truncated and leaving the system unbootable on subsequent reboots.
A flaw was found in the grub2-set-bootflag utility of grub2. A local a ...
A flaw was found in the grub2-set-bootflag utility of grub2. A local attacker could run this utility under resource pressure (for example by setting RLIMIT), causing grub2 configuration files to be truncated and leaving the system unbootable on subsequent reboots.