ALSA-2024:3184

[ALSA-2024:3184] Moderate: grub2 security update

Type:

security

Severity:

moderate

Release date:

2024-05-29

Description:

The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.

Security Fix(es):

* grub2: grub2-set-bootflag can be abused by local (pseudo-)users (CVE-2024-1048)
* grub2: Out-of-bounds write at fs/ntfs.c may lead to unsigned code execution (CVE-2023-4692)
* grub2: out-of-bounds read at fs/ntfs.c (CVE-2023-4693)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	grub2-tools-minimal-2.02-156.el8.alma.1.aarch64.rpm	02dd3aa585166270a30900599de129eff19e5424e1c7a3d3afb45a84681d2a06
aarch64	grub2-efi-aa64-cdboot-2.02-156.el8.alma.1.aarch64.rpm	156d0f1163452936f443585c1ac0f5ba171ac9f0c880e79d5b2bc3be64f90ddf
aarch64	grub2-tools-extra-2.02-156.el8.alma.1.aarch64.rpm	30ce070f94bde5d29b73a22f3cf5c3a4d0f2183701cf24bd89a11a43040c1a02
aarch64	grub2-tools-2.02-156.el8.alma.1.aarch64.rpm	9845882f67d0750ab9d7a10f94ddc3527a5b7e05b87519af5987e7d6cf0326c0
aarch64	grub2-efi-aa64-2.02-156.el8.alma.1.aarch64.rpm	98aa28e72c9e665dd81ff31d3faaa88937b37938ead9e5d97e93ab37b27b9bbb
noarch	grub2-efi-x64-modules-2.02-156.el8.alma.1.noarch.rpm	212222df5110f9fa33a757681e6f662b28ac50e13eb77538a680c5f65b2349de
noarch	grub2-efi-aa64-modules-2.02-156.el8.alma.1.noarch.rpm	33db6e14474dc2b23c2f4be2bbb4f253f60bf3f18fa050ffeae6d77f1f3f4f32
noarch	grub2-efi-ia32-modules-2.02-156.el8.alma.1.noarch.rpm	37c8f300a99c0ff601b4c22b4c78794d443af5d9a06cfcef644f28e6925ffeec
noarch	grub2-common-2.02-156.el8.alma.1.noarch.rpm	894a4ea09eee77c46312e91253b461bd55b910525e54bf639f506ce77770319c
noarch	grub2-pc-modules-2.02-156.el8.alma.1.noarch.rpm	8fdaefa91a8bb81acf34c34f512daf0e3afb31a96d5d5b1d217fde84a610901d
noarch	grub2-ppc64le-modules-2.02-156.el8.alma.1.noarch.rpm	f708a47e74f3701adc47262da52d4a09b12a5217202fa55d864a7ec7f37b268b
ppc64le	grub2-ppc64le-2.02-156.el8.alma.1.ppc64le.rpm	059ddbffeccaec60710e32aaf5bdec430128c73a58768315789010e7a44cedb8
ppc64le	grub2-tools-minimal-2.02-156.el8.alma.1.ppc64le.rpm	86702307a545d37350f3e4b3516fa07b5686bd1b4afe17a74b3549b5612df2d7
ppc64le	grub2-tools-2.02-156.el8.alma.1.ppc64le.rpm	bed20012690bfce3f172a5b272539f09738b2b7786ea0058c056cf9777e924e0
ppc64le	grub2-tools-extra-2.02-156.el8.alma.1.ppc64le.rpm	dcf458715a7188dfc8b2632c79dc039dad92d16355f191c0f7407ed45a3a40ef
x86_64	grub2-tools-2.02-156.el8.alma.1.x86_64.rpm	36e3fa25a7dbdf16c676f4feed261bab267df98c5a08022e8afd2f9b0926d067
x86_64	grub2-efi-x64-2.02-156.el8.alma.1.x86_64.rpm	374697ef4a3ad50a3127d6b2abad59ccf9a812fe8cdcc929d62b930e9aed32c7
x86_64	grub2-tools-efi-2.02-156.el8.alma.1.x86_64.rpm	4bba7e8c069437a864aeba50531a216b270b1ff5ce524ab866ca566a67fe75f8
x86_64	grub2-efi-x64-cdboot-2.02-156.el8.alma.1.x86_64.rpm	69d9dc337e71c3bcee5c3b06c02d9f8c2a1fdae7784623da2d561e18acab4909
x86_64	grub2-tools-minimal-2.02-156.el8.alma.1.x86_64.rpm	6ca1c6c297eb6efc2bf4eb329505497bb20836c7ffe6fc7e75d7ce922f53f7b5
x86_64	grub2-efi-ia32-2.02-156.el8.alma.1.x86_64.rpm	7b882ad7a6d66d761060be220622d8f64af41476415ddd2772c9b7c81840f190
x86_64	grub2-efi-ia32-cdboot-2.02-156.el8.alma.1.x86_64.rpm	8861a3f400e3c73ccaf381864ea8c2a4a9748be4d746524e823f2233c0e6d48c
x86_64	grub2-tools-extra-2.02-156.el8.alma.1.x86_64.rpm	a6bde6c2cb40857aaed66c6f1b02aa55019bb46e9c52ab6134524c624a11bd1d
x86_64	grub2-pc-2.02-156.el8.alma.1.x86_64.rpm	e21a2594bc7bd1bcfe66ef014a87c56688e71713cf41b198f8ae271f8be64a1a

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.