ELSA-2021-0696

ELSA-2021-0696 - grub2 security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2021-03-05

Description

[2.02-90.0.2.el8_3.1]
- Fix various coverity issues [Orabug: 32530657]
- Add SBAT metadata to grubx64.efi [Orabug: 32530657]
- Set proper blsdir if /boot is on btrfs rootfs [Orabug: 32063327]
- Add CVE-2020-15706, CVE-2020-15707 to the list [Orabug: 31225072]
- Update signing certificate for efi binaries
- honor /etc/sysconfig/kernel DEFAULTKERNEL setting for BLS [Orabug: 30643497]
- set EFIDIR as redhat for additional grub2 tools [Orabug: 29875597]
- Update upstream references [Orabug: 26388226]
- Copy symvers.gz to /boot during kernel install [Orabug: 29773086]
- Insert Unbreakable Enterprise Kernel text into BLS config file [Orabug: 29417955]
- fix symlink removal scriptlet, to be executed only on removal [Orabug: 19231481]
- Fix comparison in patch for 18504756
- Remove symlink to grub environment file during uninstall on EFI platforms [Orabug: 19231481]
- Put 'with' in menuentry instead of 'using' [Orabug: 18504756]
- Use different titles for UEK and RHCK kernels [Orabug: 18504756]

[2.02-90.el8_3.1]
- Fix another batch of CVEs
Resolves: CVE-2020-14372
Resolves: CVE-2020-25632
Resolves: CVE-2020-25647
Resolves: CVE-2020-27749
Resolves: CVE-2020-27779
Resolves: CVE-2021-20225
Resolves: CVE-2021-20233

Related CVEs

CVE-2020-27779

CVE-2020-27749

CVE-2021-20225

CVE-2020-25632

CVE-2020-25647

CVE-2021-20233

CVE-2020-14372

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label
Oracle Linux 8 (aarch64)	grub2-2.02-90.0.2.el8_3.1.src.rpm	0ed6a180f3fc66b27467dba8a6eba35c59c7a63c5509f5cc28eb9a8db674a781	-	ol8_aarch64_baseos_latest
	grub2-2.02-90.0.2.el8_3.1.src.rpm	0ed6a180f3fc66b27467dba8a6eba35c59c7a63c5509f5cc28eb9a8db674a781	-	ol8_aarch64_u3_baseos_patch
	grub2-common-2.02-90.0.2.el8_3.1.noarch.rpm	1f22000e311f4fd10a57233b47cf763791d3195f094fbe7f412d6a5d7e722eb3	-	ol8_aarch64_baseos_latest
	grub2-common-2.02-90.0.2.el8_3.1.noarch.rpm	1f22000e311f4fd10a57233b47cf763791d3195f094fbe7f412d6a5d7e722eb3	-	ol8_aarch64_u3_baseos_patch
	grub2-efi-aa64-2.02-90.0.2.el8_3.1.aarch64.rpm	cac78756b671a4190a9273d8759e1ce9e57b62a439bc0389ca0591339a9980c9	-	ol8_aarch64_baseos_latest
	grub2-efi-aa64-2.02-90.0.2.el8_3.1.aarch64.rpm	cac78756b671a4190a9273d8759e1ce9e57b62a439bc0389ca0591339a9980c9	-	ol8_aarch64_u3_baseos_patch
	grub2-efi-aa64-cdboot-2.02-90.0.2.el8_3.1.aarch64.rpm	453cf7354936418b18f0ade962b747a4b6bc336059016f33c2deb5bfdac6b9fa	-	ol8_aarch64_baseos_latest
	grub2-efi-aa64-cdboot-2.02-90.0.2.el8_3.1.aarch64.rpm	453cf7354936418b18f0ade962b747a4b6bc336059016f33c2deb5bfdac6b9fa	-	ol8_aarch64_u3_baseos_patch
	grub2-efi-aa64-modules-2.02-90.0.2.el8_3.1.noarch.rpm	bce2ac02ec826d89b3aedcce46b5ecc435d69199b9207614fd23a867e826d818	-	ol8_aarch64_baseos_latest
	grub2-efi-aa64-modules-2.02-90.0.2.el8_3.1.noarch.rpm	bce2ac02ec826d89b3aedcce46b5ecc435d69199b9207614fd23a867e826d818	-	ol8_aarch64_u3_baseos_patch
	grub2-efi-ia32-modules-2.02-90.0.2.el8_3.1.noarch.rpm	dd3e6881da72d538e49da5ac7f93807a8164e5fbbf026c65533f9bdd07b896dc	-	ol8_aarch64_baseos_latest
	grub2-efi-ia32-modules-2.02-90.0.2.el8_3.1.noarch.rpm	dd3e6881da72d538e49da5ac7f93807a8164e5fbbf026c65533f9bdd07b896dc	-	ol8_aarch64_u3_baseos_patch
	grub2-efi-x64-modules-2.02-90.0.2.el8_3.1.noarch.rpm	ad2fda242ecfb026a0954727e29d162bd16e40ff455422b06c2fe868e65e33ac	-	ol8_aarch64_baseos_latest
	grub2-efi-x64-modules-2.02-90.0.2.el8_3.1.noarch.rpm	ad2fda242ecfb026a0954727e29d162bd16e40ff455422b06c2fe868e65e33ac	-	ol8_aarch64_u3_baseos_patch
	grub2-pc-modules-2.02-90.0.2.el8_3.1.noarch.rpm	4e8a2ed2c6f68e74a4f5d25ff21f3ee2a1570e9eb7173ff0ad8420fb9e1cc307	-	ol8_aarch64_baseos_latest
	grub2-pc-modules-2.02-90.0.2.el8_3.1.noarch.rpm	4e8a2ed2c6f68e74a4f5d25ff21f3ee2a1570e9eb7173ff0ad8420fb9e1cc307	-	ol8_aarch64_u3_baseos_patch
	grub2-tools-2.02-90.0.2.el8_3.1.aarch64.rpm	f7011294c24380f95d127713f609ead70078ac5cabe1e4ccd77156857c04ffa8	-	ol8_aarch64_baseos_latest
	grub2-tools-2.02-90.0.2.el8_3.1.aarch64.rpm	f7011294c24380f95d127713f609ead70078ac5cabe1e4ccd77156857c04ffa8	-	ol8_aarch64_u3_baseos_patch
	grub2-tools-extra-2.02-90.0.2.el8_3.1.aarch64.rpm	634a87763a2de29142c361719dd563021a1e46a9abc768c2eefbb0b96e2afc6a	-	ol8_aarch64_baseos_latest
	grub2-tools-extra-2.02-90.0.2.el8_3.1.aarch64.rpm	634a87763a2de29142c361719dd563021a1e46a9abc768c2eefbb0b96e2afc6a	-	ol8_aarch64_u3_baseos_patch
	grub2-tools-minimal-2.02-90.0.2.el8_3.1.aarch64.rpm	be64fc860440f361febec6da4f9131ff7b5cfb9efaaab156764e35eabd944dd8	-	ol8_aarch64_baseos_latest
	grub2-tools-minimal-2.02-90.0.2.el8_3.1.aarch64.rpm	be64fc860440f361febec6da4f9131ff7b5cfb9efaaab156764e35eabd944dd8	-	ol8_aarch64_u3_baseos_patch
Oracle Linux 8 (x86_64)	grub2-2.02-90.0.2.el8_3.1.src.rpm	0ed6a180f3fc66b27467dba8a6eba35c59c7a63c5509f5cc28eb9a8db674a781	-	ol8_x86_64_baseos_latest
	grub2-2.02-90.0.2.el8_3.1.src.rpm	0ed6a180f3fc66b27467dba8a6eba35c59c7a63c5509f5cc28eb9a8db674a781	-	ol8_x86_64_u3_baseos_patch
	grub2-common-2.02-90.0.2.el8_3.1.noarch.rpm	1f22000e311f4fd10a57233b47cf763791d3195f094fbe7f412d6a5d7e722eb3	-	ol8_x86_64_baseos_latest
	grub2-common-2.02-90.0.2.el8_3.1.noarch.rpm	1f22000e311f4fd10a57233b47cf763791d3195f094fbe7f412d6a5d7e722eb3	-	ol8_x86_64_u3_baseos_patch
	grub2-efi-aa64-modules-2.02-90.0.2.el8_3.1.noarch.rpm	bce2ac02ec826d89b3aedcce46b5ecc435d69199b9207614fd23a867e826d818	-	ol8_x86_64_baseos_latest
	grub2-efi-aa64-modules-2.02-90.0.2.el8_3.1.noarch.rpm	bce2ac02ec826d89b3aedcce46b5ecc435d69199b9207614fd23a867e826d818	-	ol8_x86_64_u3_baseos_patch
	grub2-efi-ia32-2.02-90.0.2.el8_3.1.x86_64.rpm	ece8e68c53fa74baa46c9d1d0d08d3a39196468b7c68c2fed231ca6debe0e9c4	-	ol8_x86_64_baseos_latest
	grub2-efi-ia32-2.02-90.0.2.el8_3.1.x86_64.rpm	ece8e68c53fa74baa46c9d1d0d08d3a39196468b7c68c2fed231ca6debe0e9c4	-	ol8_x86_64_u3_baseos_patch
	grub2-efi-ia32-cdboot-2.02-90.0.2.el8_3.1.x86_64.rpm	6f2285ed185f5b1cb07ae0e90344ad77467c7bb863718cbe2e7c700b907f8927	-	ol8_x86_64_baseos_latest
	grub2-efi-ia32-cdboot-2.02-90.0.2.el8_3.1.x86_64.rpm	6f2285ed185f5b1cb07ae0e90344ad77467c7bb863718cbe2e7c700b907f8927	-	ol8_x86_64_u3_baseos_patch
	grub2-efi-ia32-modules-2.02-90.0.2.el8_3.1.noarch.rpm	dd3e6881da72d538e49da5ac7f93807a8164e5fbbf026c65533f9bdd07b896dc	-	ol8_x86_64_baseos_latest
	grub2-efi-ia32-modules-2.02-90.0.2.el8_3.1.noarch.rpm	dd3e6881da72d538e49da5ac7f93807a8164e5fbbf026c65533f9bdd07b896dc	-	ol8_x86_64_u3_baseos_patch
	grub2-efi-x64-2.02-90.0.2.el8_3.1.x86_64.rpm	916df37d6d264180b165968f5183d22dd2e101ae88b6873d64f7c12b8d2a9d3b	-	ol8_x86_64_baseos_latest
	grub2-efi-x64-2.02-90.0.2.el8_3.1.x86_64.rpm	916df37d6d264180b165968f5183d22dd2e101ae88b6873d64f7c12b8d2a9d3b	-	ol8_x86_64_u3_baseos_patch
	grub2-efi-x64-cdboot-2.02-90.0.2.el8_3.1.x86_64.rpm	a2b8deebe89fbf3fe7f141fea035da7da51208df1537b1f9302552a093b50034	-	ol8_x86_64_baseos_latest
	grub2-efi-x64-cdboot-2.02-90.0.2.el8_3.1.x86_64.rpm	a2b8deebe89fbf3fe7f141fea035da7da51208df1537b1f9302552a093b50034	-	ol8_x86_64_u3_baseos_patch
	grub2-efi-x64-modules-2.02-90.0.2.el8_3.1.noarch.rpm	ad2fda242ecfb026a0954727e29d162bd16e40ff455422b06c2fe868e65e33ac	-	ol8_x86_64_baseos_latest
	grub2-efi-x64-modules-2.02-90.0.2.el8_3.1.noarch.rpm	ad2fda242ecfb026a0954727e29d162bd16e40ff455422b06c2fe868e65e33ac	-	ol8_x86_64_u3_baseos_patch
	grub2-pc-2.02-90.0.2.el8_3.1.x86_64.rpm	8e1c125d498d123be0a258fcfec92309464ed88e604639fb4f68c1d434dd3a52	-	ol8_x86_64_baseos_latest
	grub2-pc-2.02-90.0.2.el8_3.1.x86_64.rpm	8e1c125d498d123be0a258fcfec92309464ed88e604639fb4f68c1d434dd3a52	-	ol8_x86_64_u3_baseos_patch
	grub2-pc-modules-2.02-90.0.2.el8_3.1.noarch.rpm	4e8a2ed2c6f68e74a4f5d25ff21f3ee2a1570e9eb7173ff0ad8420fb9e1cc307	-	ol8_x86_64_baseos_latest
	grub2-pc-modules-2.02-90.0.2.el8_3.1.noarch.rpm	4e8a2ed2c6f68e74a4f5d25ff21f3ee2a1570e9eb7173ff0ad8420fb9e1cc307	-	ol8_x86_64_u3_baseos_patch
	grub2-tools-2.02-90.0.2.el8_3.1.x86_64.rpm	26394fd087d339728cdf9840ec1f8fefc6e65ea903536372c180eaa7b105de57	-	ol8_x86_64_baseos_latest
	grub2-tools-2.02-90.0.2.el8_3.1.x86_64.rpm	26394fd087d339728cdf9840ec1f8fefc6e65ea903536372c180eaa7b105de57	-	ol8_x86_64_u3_baseos_patch
	grub2-tools-efi-2.02-90.0.2.el8_3.1.x86_64.rpm	e3ddb18913ac422e600c3b28c2431ed45cae046fc8fe11265c6967cb82f2c65a	-	ol8_x86_64_baseos_latest
	grub2-tools-efi-2.02-90.0.2.el8_3.1.x86_64.rpm	e3ddb18913ac422e600c3b28c2431ed45cae046fc8fe11265c6967cb82f2c65a	-	ol8_x86_64_u3_baseos_patch
	grub2-tools-extra-2.02-90.0.2.el8_3.1.x86_64.rpm	8dc715b9ef7c237ec7c98d466ffbdcf14e4561c1d1727fd6f1d50d02bd453435	-	ol8_x86_64_baseos_latest
	grub2-tools-extra-2.02-90.0.2.el8_3.1.x86_64.rpm	8dc715b9ef7c237ec7c98d466ffbdcf14e4561c1d1727fd6f1d50d02bd453435	-	ol8_x86_64_u3_baseos_patch
	grub2-tools-minimal-2.02-90.0.2.el8_3.1.x86_64.rpm	6d9cb7f0a149e20be2cb36bc6223a608da3b06595836a0bc160e4827c57e6293	-	ol8_x86_64_baseos_latest
	grub2-tools-minimal-2.02-90.0.2.el8_3.1.x86_64.rpm	6d9cb7f0a149e20be2cb36bc6223a608da3b06595836a0bc160e4827c57e6293	-	ol8_x86_64_u3_baseos_patch

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team