ELSA-2025-2867

Опубликовано: 17 мар. 2025

Источник: oracle-oval

Платформа: Oracle Linux 9

Описание

ELSA-2025-2867: grub2 security update (IMPORTANT)

[2.06-94.0.1]

Rework the scripts to cover both in-place upgrade and update scenarios [Orabug: 36768566]
Restore correct order of processing config files [Orabug: 36758359]
Support setting custom kernels as default kernels [Orabug: 36043978]
Bump SBAT metadata for grub to 3 [Orabug: 34872719]
Fix CVE-2022-3775 [Orabug: 34871953]
Enable signing for aarch64 EFI
Fix signing certificate names
Enable back btrfs grub module for EFI pre-built image [Orabug: 34360986]
Replaced bugzilla.oracle.com references [Orabug: 34202300]
Update provided certificate version to 202204 [JIRA: OLDIS-16371]
Various coverity fixes [JIRA: OLDIS-16371]
bump SBAT generation
Update bug url [Orabug: 34202300]
Revert provided certificate version back to 202102 [JIRA: OLDIS-16371]
Update signing certificate [JIRA: OLDIS-16371]
fix SBAT data [JIRA: OLDIS-16371]
Update requires [JIRA: OLDIS-16371]
Rebuild for SecureBoot signatures [Orabug: 33801813]
Do not add shim and grub certificate deps for aarch64 packages [Orabug: 32670033]
Update Oracle SBAT data [Orabug: 32670033]
Use new signing certificate [Orabug: 32670033]
honor /etc/sysconfig/kernel DEFAULTKERNEL setting for BLS [Orabug: 30643497]
set EFIDIR as redhat for additional grub2 tools [Orabug: 29875597]
Update upstream references [Orabug: 26388226]
Insert Unbreakable Enterprise Kernel text into BLS config file [Orabug: 29417955]
Put 'with' in menuentry instead of 'using' [Orabug: 18504756]
Use different titles for UEK and RHCK kernels [Orabug: 18504756]

[2.06-94]

CVE fixes
Resolves: CVE-2025-0624
Resolves: #RHEL-79842

Обновленные пакеты

Oracle Linux 9

Oracle Linux aarch64

grub2-common

2.06-94.0.1.el9_5

grub2-efi-aa64

2.06-94.0.1.el9_5

grub2-efi-aa64-cdboot

2.06-94.0.1.el9_5

grub2-efi-aa64-modules

2.06-94.0.1.el9_5

grub2-efi-x64-modules

2.06-94.0.1.el9_5

grub2-tools

2.06-94.0.1.el9_5

grub2-tools-extra

2.06-94.0.1.el9_5

grub2-tools-minimal

2.06-94.0.1.el9_5

Oracle Linux x86_64

grub2-common

2.06-94.0.1.el9_5

grub2-efi-aa64-modules

2.06-94.0.1.el9_5

grub2-efi-x64

2.06-94.0.1.el9_5

grub2-efi-x64-cdboot

2.06-94.0.1.el9_5

grub2-efi-x64-modules

2.06-94.0.1.el9_5

grub2-pc

2.06-94.0.1.el9_5

grub2-pc-modules

2.06-94.0.1.el9_5

grub2-tools

2.06-94.0.1.el9_5

grub2-tools-efi

2.06-94.0.1.el9_5

grub2-tools-extra

2.06-94.0.1.el9_5

grub2-tools-minimal

2.06-94.0.1.el9_5

Связанные CVE

CVE-2025-0624

Ссылки на источники

Связанные уязвимости

CVE-2025-0624

CVSS3: 7.6

ubuntu

6 месяцев назад

A flaw was found in grub2. During the network boot process, when trying to search for the configuration file, grub copies data from a user controlled environment variable into an internal buffer using the grub_strcpy() function. During this step, it fails to consider the environment variable length when allocating the internal buffer, resulting in an out-of-bounds write. If correctly exploited, this issue may result in remote code execution through the same network segment grub is searching for the boot information, which can be used to by-pass secure boot protections.