Stay Connected:

ELSA-2022-2110

ELSA-2022-2110 - grub2 security, bug fix, and enhancement update

Type:SECURITY
Severity:LOW
Release Date:2022-05-17

Description


[2.02-123.0.1]
- backport arm64: Fix EFI loader kernel image allocation [Orabug: 33702462]
- backport Arm: check for the PE magic for the compiled arch [Orabug: 33702462]
- Backport some better script logic for BTRFS support [Orabug: 32448171]
- Do not add shim and grub certificate deps for aarch64 packages [Orabug: 32670033]
- Update Oracle SBAT data [Orabug: 32670033]
- Use new signing certificate [Orabug: 32670033]
- Fix various coverity issues [Orabug: 32530657]
- Set proper blsdir if /boot is on btrfs rootfs [Orabug: 32063327]
- Add CVE-2020-15706, CVE-2020-15707 to the list [Orabug: 31225072]
- honor /etc/sysconfig/kernel DEFAULTKERNEL setting for BLS [Orabug: 30643497]
- set EFIDIR as redhat for additional grub2 tools [Orabug: 29875597]
- Update upstream references [Orabug: 26388226]
- Insert Unbreakable Enterprise Kernel text into BLS config file [Orabug: 29417955]
- fix symlink removal scriptlet, to be executed only on removal [Orabug: 19231481]
- Fix comparison in patch for 18504756
- Remove symlink to grub environment file during uninstall on EFI platforms [Orabug: 19231481]
- Put 'with' in menuentry instead of 'using' [Orabug: 18504756]
- Use different titles for UEK and RHCK kernels [Orabug: 18504756]

[2.06-123]
- Bump for signing
- Resolves: #2061252

[2.06-122]
- Fix initialization on efidisk patch
- Resolves: #2061252

[2.06-121]
- Backport support for loading initrd above 4GB
- Resolves: #2048433

[2.06-120]
- Bump signing
- Resolves: #2032294

[2.06-119]
- Enable connectefi module
- Resolves: #2032294

[2.02-118]
- Fix check on blscfg conditional (mlewando)
- Resolves: #1899903

[2.02-117]
- Once more, for signing
- Resolves: #2048904

[2.02-116]
- Add efidisk/connectefi patches
- Resolves: #2048904
- Resolves: #2032294

[2.02-115]
- Re-arm GRUB_ENABLE_BLSCFG=false
- Resolves: #1899903

[2.02-114]
- Fix behavior of GRUB_TERMINAL_INPUT=at_keyboard
- Resolves: #2020927

[2.02-113]
- Bump to fix target
- Resolves: #1809246

[2.02-112]
- Fix DHCP proxy efi booting
- Resolves: #1809246

[2.02-111]
- Bump to fix target
- Resolves: #1914575

[2.02-110]
- Dont run grub-boot-success.timer in a nspawn container
- Resolves: #1914575

[2.02-109]
- Drop prelink snippet
- Resolves: #2016269

[2.02-108]
- Bump version to fix build target
- Resolves: #2030359

[2.02-107]
- CVE-2021-3981 (Incorrect read permission in grub.cfg)
- Resolves: #2030359


Related CVEs


CVE-2021-3981

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 8 (aarch64) grub2-2.02-123.0.1.el8.src.rpm508009fd495c0235a98a0c1a526503bc-
grub2-common-2.02-123.0.1.el8.noarch.rpm8163a3fbf1a47da790e957218faa6f87-
grub2-efi-aa64-2.02-123.0.1.el8.aarch64.rpm0507cc1c486c2bb07e331426195a849f-
grub2-efi-aa64-cdboot-2.02-123.0.1.el8.aarch64.rpm51f1d41c6edec977b715edebc689639a-
grub2-efi-aa64-modules-2.02-123.0.1.el8.noarch.rpm38120ae54027e7d48b6533e38aeba87e-
grub2-efi-ia32-modules-2.02-123.0.1.el8.noarch.rpmb4365eb4371ea8faad0756a111fcd08c-
grub2-efi-x64-modules-2.02-123.0.1.el8.noarch.rpm6343eb302f745fe833f16999e932e12a-
grub2-pc-modules-2.02-123.0.1.el8.noarch.rpmccdcd70226d628579b4f76ee84d6c99f-
grub2-tools-2.02-123.0.1.el8.aarch64.rpm471e3ff9d737521c1d2327af7ac93202-
grub2-tools-extra-2.02-123.0.1.el8.aarch64.rpma38818d35a943f76acd77b6316fa0ca1-
grub2-tools-minimal-2.02-123.0.1.el8.aarch64.rpmbab036788a244888d23df79ad6662232-
Oracle Linux 8 (x86_64) grub2-2.02-123.0.1.el8.src.rpm508009fd495c0235a98a0c1a526503bc-
grub2-common-2.02-123.0.1.el8.noarch.rpm8163a3fbf1a47da790e957218faa6f87-
grub2-efi-aa64-modules-2.02-123.0.1.el8.noarch.rpm38120ae54027e7d48b6533e38aeba87e-
grub2-efi-ia32-2.02-123.0.1.el8.x86_64.rpmd46099198580f022f8567c04d020ce7c-
grub2-efi-ia32-cdboot-2.02-123.0.1.el8.x86_64.rpmb73c9661dbd12bce6d627dce60f4abde-
grub2-efi-ia32-modules-2.02-123.0.1.el8.noarch.rpmb4365eb4371ea8faad0756a111fcd08c-
grub2-efi-x64-2.02-123.0.1.el8.x86_64.rpme024bfa01509ad174656966b58a7758e-
grub2-efi-x64-cdboot-2.02-123.0.1.el8.x86_64.rpm7c5fbdc15d94ca5985b0a2e0c9f9f1df-
grub2-efi-x64-modules-2.02-123.0.1.el8.noarch.rpm6343eb302f745fe833f16999e932e12a-
grub2-pc-2.02-123.0.1.el8.x86_64.rpmdaebce4006c6951838be17d4aa31fdb0-
grub2-pc-modules-2.02-123.0.1.el8.noarch.rpmccdcd70226d628579b4f76ee84d6c99f-
grub2-tools-2.02-123.0.1.el8.x86_64.rpm2f6d8bcfddd49f3c0d344ebd2d73ae84-
grub2-tools-efi-2.02-123.0.1.el8.x86_64.rpm7409c67dcf66c8f7e8b46d285dabd20e-
grub2-tools-extra-2.02-123.0.1.el8.x86_64.rpm893aaee460c89b495753b9f4ff0b3d34-
grub2-tools-minimal-2.02-123.0.1.el8.x86_64.rpm89ebc91ef6d822a4d14f5062b1e97c1f-



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights