RLSA-2025:16154

Опубликовано: 03 окт. 2025

Источник: rocky

Оценка: Moderate

Описание

Moderate: grub2 security update

The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.

Security Fix(es):

grub2: grub-core/gettext: Integer overflow leads to Heap OOB Write and Read. (CVE-2024-45776)
grub2: fs/ufs: OOB write in the heap (CVE-2024-45781)
grub2: command/gpg: Use-after-free due to hooks not being removed on module unload (CVE-2025-0622)
grub2: UFS: Integer overflow may lead to heap based out-of-bounds write when handling symlinks (CVE-2025-0677)
grub2: commands/dump: The dump command is not in lockdown when secure boot is enabled (CVE-2025-1118)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Затронутые продукты

Rocky Linux 10

Наименование	Архитектура	Релиз	RPM
grub2-common	noarch	15.el10_0	grub2-common-2.12-15.el10_0.noarch.rpm
grub2-efi-aa64-modules	noarch	15.el10_0	grub2-efi-aa64-modules-2.12-15.el10_0.noarch.rpm
grub2-efi-x64	x86_64	15.el10_0	grub2-efi-x64-2.12-15.el10_0.x86_64.rpm
grub2-efi-x64-cdboot	x86_64	15.el10_0	grub2-efi-x64-cdboot-2.12-15.el10_0.x86_64.rpm
grub2-efi-x64-modules	noarch	15.el10_0	grub2-efi-x64-modules-2.12-15.el10_0.noarch.rpm
grub2-pc	x86_64	15.el10_0	grub2-pc-2.12-15.el10_0.x86_64.rpm
grub2-pc-modules	noarch	15.el10_0	grub2-pc-modules-2.12-15.el10_0.noarch.rpm
grub2-tools	x86_64	15.el10_0	grub2-tools-2.12-15.el10_0.x86_64.rpm
grub2-tools-efi	x86_64	15.el10_0	grub2-tools-efi-2.12-15.el10_0.x86_64.rpm
grub2-tools-extra	x86_64	15.el10_0	grub2-tools-extra-2.12-15.el10_0.x86_64.rpm