Release date:
2024-08-21 19:58:03 UTC
Description:
- Fix package version number
- Use CloudLinux vendor cert
- Make this package installable only on a system having Cloudlinux signed
components: grub2 and kernel
- Add patches from centos-8.5 ELS:
- CVE-2021-3695: out-of-bounds write in the heap area by a crafted 16-bit
grayscale PNG image
- CVE-2021-3696: a heap out-of-bounds during the handling of Huffman tables
in the PNG reader
- CVE-2021-3697: allowing user-controlled data to be written in heap by a
crafted JPEG image
- CVE-2022-2601: possible circumventing of the secure boot mechanism by a
malicious crafted pf2 font
- CVE-2022-28733: possible write past the end of the buffer because of
integer underflow in grub_net_recv_ip4_packets()
- CVE-2022-28734: out-of-bounds write when handling split HTTP headers
- CVE-2022-28736: use-after-free vulnerability in grub_cmd_chainloader()
- CVE-2022-3775: out-of-bounds write into grub2’s heap because of lack of
proper validation of glyph’s width and height
- CVE-2023-4692: out-of-bounds write in grub2’s NTFS filesystem driver
- The following CVEs were fixed by previous patches additionally:
- CVE-2020-15706: a race condition in grub_script_function_create() leading
to a use-after-free vulnerability
- CVE-2020-15707: integer overflows in efilinux leading to a heap-based
buffer overflow
- A number of upstream fixes backported including:
- CVE-2024-1048: a flaw that may result in filesystem running out of free
inodes or blocks
Updated packages:
-
grub2-common-2.02-129.el8.tuxcare.els1.noarch.rpm
sha:ac67bbb902533022c0f4945810da9964a66b7ef3132dfd59aade312c5fc18fe8
-
grub2-efi-ia32-2.02-129.el8.tuxcare.els1.x86_64.rpm
sha:0dd48b065750c72f0166aba017f2bc616149955cd4f81c50c2b85c13787c928d
-
grub2-efi-ia32-cdboot-2.02-129.el8.tuxcare.els1.x86_64.rpm
sha:477947c9e9b14604da9f2afbaf780d63c20737579466bc5cdf2e323af407efdd
-
grub2-efi-ia32-modules-2.02-129.el8.tuxcare.els1.noarch.rpm
sha:0fc5462c44bcd2f227489d6d2427b963ea92229b0e39e1828ecb3e35e0598a94
-
grub2-efi-x64-2.02-129.el8.tuxcare.els1.x86_64.rpm
sha:9743bd564f3370d689114500c46cdb21b5625fdbd8d8ba8468bc9a27227e1496
-
grub2-efi-x64-cdboot-2.02-129.el8.tuxcare.els1.x86_64.rpm
sha:e32a3de19c5d0b9f877854814ba039ed291f603ed4ea7eb8d2248198af2c5339
-
grub2-efi-x64-modules-2.02-129.el8.tuxcare.els1.noarch.rpm
sha:063b97522845cc09c127662f6f7bc4b7ac8d4875011ec94b279605d874ca9f2e
-
grub2-pc-2.02-129.el8.tuxcare.els1.x86_64.rpm
sha:fd0bfa7b30fa9f1929dab5e656e35ebe5ae516a6c3f56231ca4997394c90ce4e
-
grub2-pc-modules-2.02-129.el8.tuxcare.els1.noarch.rpm
sha:7daf00aaa3d3235774df93de5cac260208a2909293983e7e91ceafe02739af91
-
grub2-tools-2.02-129.el8.tuxcare.els1.x86_64.rpm
sha:a330dc8df2e3d40a318ab5bed021b1101b50d088b32f41983a2ba9d5e5b5d427
-
grub2-tools-efi-2.02-129.el8.tuxcare.els1.x86_64.rpm
sha:058d3bc5a8a6442b6b3bb644d58b6606ed1076a0bf9931fc2308fbbeea21d43d
-
grub2-tools-extra-2.02-129.el8.tuxcare.els1.x86_64.rpm
sha:48b01d5157e2a1d8c4bf57ce7da03171dd96b764e55da65b51814e59ea8f99e2
-
grub2-tools-minimal-2.02-129.el8.tuxcare.els1.x86_64.rpm
sha:3355b0f87a4549907fd3fa0feffd7e5240c9b6d55e3a00510dbcb1b5818f278c
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.