ELSA-2023-0049

ULN >
Oracle Linux Errata repository >
ELSA-2023-0049

ELSA-2023-0049 - grub2 security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2023-01-25

Description

[2.02-142.0.3.el8_7.1]
- Fix CVE-2022-3775, CVE-2022-2601 [Orabug: 34867710]
- Bump SBAT metadata for grub to 3 [Orabug: 34871758]
- Enable signing on aarch64
- Don't try to switch to a BLS config if GRUB_ENABLE_BLSCFG is already set (Javier Martinez Canillas) [Orabug: 34375996]
- Enable back btrfs module by default [Orabug: 34377188]
- Backport upstream SNP protocol fixes [Orabug: 34195100]
- Rebase Fix EFI loader kernel image allocation patch, adapt it to new NX code [Orabug: 34352232]
- enable multiboot2 [Orabug: 34285558]
- backport arm64: Fix EFI loader kernel image allocation [Orabug: 33702462]
- backport Arm: check for the PE magic for the compiled arch [Orabug: 33702462]
- Backport some better script logic for BTRFS support [Orabug: 32448171]
- Do not add shim and grub certificate deps for aarch64 packages [Orabug: 32670033]
- Update Oracle SBAT data [Orabug: 32670033]
- Use new signing certificate [Orabug: 32670033]
- Fix various coverity issues [Orabug: 32530657]
- Set proper blsdir if /boot is on btrfs rootfs [Orabug: 32063327]
- Add CVE-2020-15706, CVE-2020-15707 to the list [Orabug: 31225072]
- honor /etc/sysconfig/kernel DEFAULTKERNEL setting for BLS [Orabug: 30643497]
- set EFIDIR as redhat for additional grub2 tools [Orabug: 29875597]
- Update upstream references [Orabug: 26388226]
- Insert Unbreakable Enterprise Kernel text into BLS config file [Orabug: 29417955]
- fix symlink removal scriptlet, to be executed only on removal [Orabug: 19231481]
- Fix comparison in patch for 18504756
- Remove symlink to grub environment file during uninstall on EFI platforms [Orabug: 19231481]
- Put 'with' in menuentry instead of 'using' [Orabug: 18504756]
- Use different titles for UEK and RHCK kernels [Orabug: 18504756]

[2.02-142.el8_7.1]
- Sync with 8.8 (actually 2.02-145)
- Resolves: CVE-2022-2601

Related CVEs

CVE-2022-2601

CVE-2022-3775

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	grub2-2.02-142.0.3.el8_7.1.src.rpm	9b0b3d8d93cb75a1651da80e3288d7f9d7cc1a535e69064cfd3ef1d869bda3fd	-	ol8_aarch64_baseos_latest
	grub2-2.02-142.0.3.el8_7.1.src.rpm	9b0b3d8d93cb75a1651da80e3288d7f9d7cc1a535e69064cfd3ef1d869bda3fd	-	ol8_aarch64_u7_baseos_patch
	grub2-common-2.02-142.0.3.el8_7.1.noarch.rpm	50f64cb0dcbc2eeafb3743ac01fbfbf453ef2b66461cf35386f5bec4802858b8	-	ol8_aarch64_baseos_latest
	grub2-common-2.02-142.0.3.el8_7.1.noarch.rpm	50f64cb0dcbc2eeafb3743ac01fbfbf453ef2b66461cf35386f5bec4802858b8	-	ol8_aarch64_u7_baseos_patch
	grub2-efi-aa64-2.02-142.0.3.el8_7.1.aarch64.rpm	830c95c21ba3f983eb2d6c7c0f5101acd8cfc25c65776f04c4bf3de8a675ae48	-	ol8_aarch64_baseos_latest
	grub2-efi-aa64-2.02-142.0.3.el8_7.1.aarch64.rpm	830c95c21ba3f983eb2d6c7c0f5101acd8cfc25c65776f04c4bf3de8a675ae48	-	ol8_aarch64_u7_baseos_patch
	grub2-efi-aa64-cdboot-2.02-142.0.3.el8_7.1.aarch64.rpm	e97463e2633e479850e5952aa160905eaa6f925f7e696d3e04f7e94b2211bcff	-	ol8_aarch64_baseos_latest
	grub2-efi-aa64-cdboot-2.02-142.0.3.el8_7.1.aarch64.rpm	e97463e2633e479850e5952aa160905eaa6f925f7e696d3e04f7e94b2211bcff	-	ol8_aarch64_u7_baseos_patch
	grub2-efi-aa64-modules-2.02-142.0.3.el8_7.1.noarch.rpm	bcdd92b2da9836028f4713623f4a06b79afd344de8a11049cff2e53de3a83c75	-	ol8_aarch64_baseos_latest
	grub2-efi-aa64-modules-2.02-142.0.3.el8_7.1.noarch.rpm	bcdd92b2da9836028f4713623f4a06b79afd344de8a11049cff2e53de3a83c75	-	ol8_aarch64_u7_baseos_patch
	grub2-efi-ia32-modules-2.02-142.0.3.el8_7.1.noarch.rpm	a3e3fba8dbbc8a23bc86fac224c62e2e2143bef0c87a30618a5b272bf7c99f5b	-	ol8_aarch64_baseos_latest
	grub2-efi-ia32-modules-2.02-142.0.3.el8_7.1.noarch.rpm	a3e3fba8dbbc8a23bc86fac224c62e2e2143bef0c87a30618a5b272bf7c99f5b	-	ol8_aarch64_u7_baseos_patch
	grub2-efi-x64-modules-2.02-142.0.3.el8_7.1.noarch.rpm	4358eceb3eb9f523db568242c89d823108356d2302f3679bfa5a27d38a5c1b82	-	ol8_aarch64_baseos_latest
	grub2-efi-x64-modules-2.02-142.0.3.el8_7.1.noarch.rpm	4358eceb3eb9f523db568242c89d823108356d2302f3679bfa5a27d38a5c1b82	-	ol8_aarch64_u7_baseos_patch
	grub2-pc-modules-2.02-142.0.3.el8_7.1.noarch.rpm	d778d056c33ef78bc5d4b357a95bdc8bd4fb8e1f38f8d084af13e1a035bba196	-	ol8_aarch64_baseos_latest
	grub2-pc-modules-2.02-142.0.3.el8_7.1.noarch.rpm	d778d056c33ef78bc5d4b357a95bdc8bd4fb8e1f38f8d084af13e1a035bba196	-	ol8_aarch64_u7_baseos_patch
	grub2-tools-2.02-142.0.3.el8_7.1.aarch64.rpm	0bf404b44edd58a6e3b5980ea5c08dacd1770019ff11d6a1f53085656c11edb7	-	ol8_aarch64_baseos_latest
	grub2-tools-2.02-142.0.3.el8_7.1.aarch64.rpm	0bf404b44edd58a6e3b5980ea5c08dacd1770019ff11d6a1f53085656c11edb7	-	ol8_aarch64_u7_baseos_patch
	grub2-tools-extra-2.02-142.0.3.el8_7.1.aarch64.rpm	0f4eb80b62af43d45c0675591c40121e7d9307567cd0bf04d02473f46b9940a5	-	ol8_aarch64_baseos_latest
	grub2-tools-extra-2.02-142.0.3.el8_7.1.aarch64.rpm	0f4eb80b62af43d45c0675591c40121e7d9307567cd0bf04d02473f46b9940a5	-	ol8_aarch64_u7_baseos_patch
	grub2-tools-minimal-2.02-142.0.3.el8_7.1.aarch64.rpm	c4be1b725434e18d219deef06eb4f45ef2292504513c746794919f9fe2830928	-	ol8_aarch64_baseos_latest
	grub2-tools-minimal-2.02-142.0.3.el8_7.1.aarch64.rpm	c4be1b725434e18d219deef06eb4f45ef2292504513c746794919f9fe2830928	-	ol8_aarch64_u7_baseos_patch

Oracle Linux 8 (x86_64)	grub2-2.02-142.0.3.el8_7.1.src.rpm	9b0b3d8d93cb75a1651da80e3288d7f9d7cc1a535e69064cfd3ef1d869bda3fd	-	ol8_x86_64_baseos_latest
	grub2-2.02-142.0.3.el8_7.1.src.rpm	9b0b3d8d93cb75a1651da80e3288d7f9d7cc1a535e69064cfd3ef1d869bda3fd	-	ol8_x86_64_u7_baseos_patch
	grub2-common-2.02-142.0.3.el8_7.1.noarch.rpm	50f64cb0dcbc2eeafb3743ac01fbfbf453ef2b66461cf35386f5bec4802858b8	-	exadata_dbserver_24.1.0.0.0_x86_64_base
	grub2-common-2.02-142.0.3.el8_7.1.noarch.rpm	50f64cb0dcbc2eeafb3743ac01fbfbf453ef2b66461cf35386f5bec4802858b8	-	exadata_dbserver_24.1.1.0.0_x86_64_base
	grub2-common-2.02-142.0.3.el8_7.1.noarch.rpm	50f64cb0dcbc2eeafb3743ac01fbfbf453ef2b66461cf35386f5bec4802858b8	-	ol8_x86_64_baseos_latest
	grub2-common-2.02-142.0.3.el8_7.1.noarch.rpm	50f64cb0dcbc2eeafb3743ac01fbfbf453ef2b66461cf35386f5bec4802858b8	-	ol8_x86_64_u7_baseos_patch
	grub2-efi-aa64-modules-2.02-142.0.3.el8_7.1.noarch.rpm	bcdd92b2da9836028f4713623f4a06b79afd344de8a11049cff2e53de3a83c75	-	ol8_x86_64_baseos_latest
	grub2-efi-aa64-modules-2.02-142.0.3.el8_7.1.noarch.rpm	bcdd92b2da9836028f4713623f4a06b79afd344de8a11049cff2e53de3a83c75	-	ol8_x86_64_u7_baseos_patch
	grub2-efi-ia32-2.02-142.0.3.el8_7.1.x86_64.rpm	0200ef65c264de84788b8796bc9af977bdb846e8a89f5c10a00b1726e991b6a8	-	ol8_x86_64_baseos_latest
	grub2-efi-ia32-2.02-142.0.3.el8_7.1.x86_64.rpm	0200ef65c264de84788b8796bc9af977bdb846e8a89f5c10a00b1726e991b6a8	-	ol8_x86_64_u7_baseos_patch
	grub2-efi-ia32-cdboot-2.02-142.0.3.el8_7.1.x86_64.rpm	1efef7cb1066a7e6ff2da5d2dc8a3748a5bd9cf942cb19079d1d6ee0d9e9fc03	-	ol8_x86_64_baseos_latest
	grub2-efi-ia32-cdboot-2.02-142.0.3.el8_7.1.x86_64.rpm	1efef7cb1066a7e6ff2da5d2dc8a3748a5bd9cf942cb19079d1d6ee0d9e9fc03	-	ol8_x86_64_u7_baseos_patch
	grub2-efi-ia32-modules-2.02-142.0.3.el8_7.1.noarch.rpm	a3e3fba8dbbc8a23bc86fac224c62e2e2143bef0c87a30618a5b272bf7c99f5b	-	ol8_x86_64_baseos_latest
	grub2-efi-ia32-modules-2.02-142.0.3.el8_7.1.noarch.rpm	a3e3fba8dbbc8a23bc86fac224c62e2e2143bef0c87a30618a5b272bf7c99f5b	-	ol8_x86_64_u7_baseos_patch
	grub2-efi-x64-2.02-142.0.3.el8_7.1.x86_64.rpm	ca7c8b0f5d9f81cd26696a981bd758017f380589e5fa8163726b7c4b8f3d1d6a	-	exadata_dbserver_24.1.0.0.0_x86_64_base
	grub2-efi-x64-2.02-142.0.3.el8_7.1.x86_64.rpm	ca7c8b0f5d9f81cd26696a981bd758017f380589e5fa8163726b7c4b8f3d1d6a	-	exadata_dbserver_24.1.1.0.0_x86_64_base
	grub2-efi-x64-2.02-142.0.3.el8_7.1.x86_64.rpm	ca7c8b0f5d9f81cd26696a981bd758017f380589e5fa8163726b7c4b8f3d1d6a	-	ol8_x86_64_baseos_latest
	grub2-efi-x64-2.02-142.0.3.el8_7.1.x86_64.rpm	ca7c8b0f5d9f81cd26696a981bd758017f380589e5fa8163726b7c4b8f3d1d6a	-	ol8_x86_64_u7_baseos_patch
	grub2-efi-x64-cdboot-2.02-142.0.3.el8_7.1.x86_64.rpm	c93809e025754b000fe4ae9bf54ebd2550f3e4aec224c26b3041b989a5d7eb5a	-	ol8_x86_64_baseos_latest
	grub2-efi-x64-cdboot-2.02-142.0.3.el8_7.1.x86_64.rpm	c93809e025754b000fe4ae9bf54ebd2550f3e4aec224c26b3041b989a5d7eb5a	-	ol8_x86_64_u7_baseos_patch
	grub2-efi-x64-modules-2.02-142.0.3.el8_7.1.noarch.rpm	4358eceb3eb9f523db568242c89d823108356d2302f3679bfa5a27d38a5c1b82	-	exadata_dbserver_24.1.0.0.0_x86_64_base
	grub2-efi-x64-modules-2.02-142.0.3.el8_7.1.noarch.rpm	4358eceb3eb9f523db568242c89d823108356d2302f3679bfa5a27d38a5c1b82	-	exadata_dbserver_24.1.1.0.0_x86_64_base
	grub2-efi-x64-modules-2.02-142.0.3.el8_7.1.noarch.rpm	4358eceb3eb9f523db568242c89d823108356d2302f3679bfa5a27d38a5c1b82	-	ol8_x86_64_baseos_latest
	grub2-efi-x64-modules-2.02-142.0.3.el8_7.1.noarch.rpm	4358eceb3eb9f523db568242c89d823108356d2302f3679bfa5a27d38a5c1b82	-	ol8_x86_64_u7_baseos_patch
	grub2-pc-2.02-142.0.3.el8_7.1.x86_64.rpm	0ed24d6e274abc120a81404400c785c44fb861398540b689cd96eb548f193a58	-	exadata_dbserver_24.1.0.0.0_x86_64_base
	grub2-pc-2.02-142.0.3.el8_7.1.x86_64.rpm	0ed24d6e274abc120a81404400c785c44fb861398540b689cd96eb548f193a58	-	exadata_dbserver_24.1.1.0.0_x86_64_base
	grub2-pc-2.02-142.0.3.el8_7.1.x86_64.rpm	0ed24d6e274abc120a81404400c785c44fb861398540b689cd96eb548f193a58	-	ol8_x86_64_baseos_latest
	grub2-pc-2.02-142.0.3.el8_7.1.x86_64.rpm	0ed24d6e274abc120a81404400c785c44fb861398540b689cd96eb548f193a58	-	ol8_x86_64_u7_baseos_patch
	grub2-pc-modules-2.02-142.0.3.el8_7.1.noarch.rpm	d778d056c33ef78bc5d4b357a95bdc8bd4fb8e1f38f8d084af13e1a035bba196	-	exadata_dbserver_24.1.0.0.0_x86_64_base
	grub2-pc-modules-2.02-142.0.3.el8_7.1.noarch.rpm	d778d056c33ef78bc5d4b357a95bdc8bd4fb8e1f38f8d084af13e1a035bba196	-	exadata_dbserver_24.1.1.0.0_x86_64_base
	grub2-pc-modules-2.02-142.0.3.el8_7.1.noarch.rpm	d778d056c33ef78bc5d4b357a95bdc8bd4fb8e1f38f8d084af13e1a035bba196	-	ol8_x86_64_baseos_latest
	grub2-pc-modules-2.02-142.0.3.el8_7.1.noarch.rpm	d778d056c33ef78bc5d4b357a95bdc8bd4fb8e1f38f8d084af13e1a035bba196	-	ol8_x86_64_u7_baseos_patch
	grub2-tools-2.02-142.0.3.el8_7.1.x86_64.rpm	27811a2398ca73e06d8a0c87f38ec252ef66f0b4d8ac4844df71725b54393b60	-	exadata_dbserver_24.1.0.0.0_x86_64_base
	grub2-tools-2.02-142.0.3.el8_7.1.x86_64.rpm	27811a2398ca73e06d8a0c87f38ec252ef66f0b4d8ac4844df71725b54393b60	-	exadata_dbserver_24.1.1.0.0_x86_64_base
	grub2-tools-2.02-142.0.3.el8_7.1.x86_64.rpm	27811a2398ca73e06d8a0c87f38ec252ef66f0b4d8ac4844df71725b54393b60	-	ol8_x86_64_baseos_latest
	grub2-tools-2.02-142.0.3.el8_7.1.x86_64.rpm	27811a2398ca73e06d8a0c87f38ec252ef66f0b4d8ac4844df71725b54393b60	-	ol8_x86_64_u7_baseos_patch
	grub2-tools-efi-2.02-142.0.3.el8_7.1.x86_64.rpm	08d495480d1a6b00e77d4c8e080f3dd8184f094d8e3eb3e20bb76cebee9309dd	-	exadata_dbserver_24.1.0.0.0_x86_64_base
	grub2-tools-efi-2.02-142.0.3.el8_7.1.x86_64.rpm	08d495480d1a6b00e77d4c8e080f3dd8184f094d8e3eb3e20bb76cebee9309dd	-	exadata_dbserver_24.1.1.0.0_x86_64_base
	grub2-tools-efi-2.02-142.0.3.el8_7.1.x86_64.rpm	08d495480d1a6b00e77d4c8e080f3dd8184f094d8e3eb3e20bb76cebee9309dd	-	ol8_x86_64_baseos_latest
	grub2-tools-efi-2.02-142.0.3.el8_7.1.x86_64.rpm	08d495480d1a6b00e77d4c8e080f3dd8184f094d8e3eb3e20bb76cebee9309dd	-	ol8_x86_64_u7_baseos_patch
	grub2-tools-extra-2.02-142.0.3.el8_7.1.x86_64.rpm	a7e84f0020b02b0afb3b6e7c6e146757d34226d4066123dca7f15ec1f08b12f5	-	exadata_dbserver_24.1.0.0.0_x86_64_base
	grub2-tools-extra-2.02-142.0.3.el8_7.1.x86_64.rpm	a7e84f0020b02b0afb3b6e7c6e146757d34226d4066123dca7f15ec1f08b12f5	-	exadata_dbserver_24.1.1.0.0_x86_64_base
	grub2-tools-extra-2.02-142.0.3.el8_7.1.x86_64.rpm	a7e84f0020b02b0afb3b6e7c6e146757d34226d4066123dca7f15ec1f08b12f5	-	ol8_x86_64_baseos_latest
	grub2-tools-extra-2.02-142.0.3.el8_7.1.x86_64.rpm	a7e84f0020b02b0afb3b6e7c6e146757d34226d4066123dca7f15ec1f08b12f5	-	ol8_x86_64_u7_baseos_patch
	grub2-tools-minimal-2.02-142.0.3.el8_7.1.x86_64.rpm	8697f8c8b7a90c8af0271be2a4607a5f5086bbc164663c8f7c9a27f0579ffc31	-	exadata_dbserver_24.1.0.0.0_x86_64_base
	grub2-tools-minimal-2.02-142.0.3.el8_7.1.x86_64.rpm	8697f8c8b7a90c8af0271be2a4607a5f5086bbc164663c8f7c9a27f0579ffc31	-	exadata_dbserver_24.1.1.0.0_x86_64_base
	grub2-tools-minimal-2.02-142.0.3.el8_7.1.x86_64.rpm	8697f8c8b7a90c8af0271be2a4607a5f5086bbc164663c8f7c9a27f0579ffc31	-	ol8_x86_64_baseos_latest
	grub2-tools-minimal-2.02-142.0.3.el8_7.1.x86_64.rpm	8697f8c8b7a90c8af0271be2a4607a5f5086bbc164663c8f7c9a27f0579ffc31	-	ol8_x86_64_u7_baseos_patch

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691