ELSA-2022-2110

ULN >
Oracle Linux Errata repository >
ELSA-2022-2110

ELSA-2022-2110 - grub2 security, bug fix, and enhancement update

Type:	SECURITY
Impact:	LOW
Release Date:	2022-05-17

Description

[2.02-123.0.1]
- backport arm64: Fix EFI loader kernel image allocation [Orabug: 33702462]
- backport Arm: check for the PE magic for the compiled arch [Orabug: 33702462]
- Backport some better script logic for BTRFS support [Orabug: 32448171]
- Do not add shim and grub certificate deps for aarch64 packages [Orabug: 32670033]
- Update Oracle SBAT data [Orabug: 32670033]
- Use new signing certificate [Orabug: 32670033]
- Fix various coverity issues [Orabug: 32530657]
- Set proper blsdir if /boot is on btrfs rootfs [Orabug: 32063327]
- Add CVE-2020-15706, CVE-2020-15707 to the list [Orabug: 31225072]
- honor /etc/sysconfig/kernel DEFAULTKERNEL setting for BLS [Orabug: 30643497]
- set EFIDIR as redhat for additional grub2 tools [Orabug: 29875597]
- Update upstream references [Orabug: 26388226]
- Insert Unbreakable Enterprise Kernel text into BLS config file [Orabug: 29417955]
- fix symlink removal scriptlet, to be executed only on removal [Orabug: 19231481]
- Fix comparison in patch for 18504756
- Remove symlink to grub environment file during uninstall on EFI platforms [Orabug: 19231481]
- Put 'with' in menuentry instead of 'using' [Orabug: 18504756]
- Use different titles for UEK and RHCK kernels [Orabug: 18504756]

[2.06-123]
- Bump for signing
- Resolves: #2061252

[2.06-122]
- Fix initialization on efidisk patch
- Resolves: #2061252

[2.06-121]
- Backport support for loading initrd above 4GB
- Resolves: #2048433

[2.06-120]
- Bump signing
- Resolves: #2032294

[2.06-119]
- Enable connectefi module
- Resolves: #2032294

[2.02-118]
- Fix check on blscfg conditional (mlewando)
- Resolves: #1899903

[2.02-117]
- Once more, for signing
- Resolves: #2048904

[2.02-116]
- Add efidisk/connectefi patches
- Resolves: #2048904
- Resolves: #2032294

[2.02-115]
- Re-arm GRUB_ENABLE_BLSCFG=false
- Resolves: #1899903

[2.02-114]
- Fix behavior of GRUB_TERMINAL_INPUT=at_keyboard
- Resolves: #2020927

[2.02-113]
- Bump to fix target
- Resolves: #1809246

[2.02-112]
- Fix DHCP proxy efi booting
- Resolves: #1809246

[2.02-111]
- Bump to fix target
- Resolves: #1914575

[2.02-110]
- Dont run grub-boot-success.timer in a nspawn container
- Resolves: #1914575

[2.02-109]
- Drop prelink snippet
- Resolves: #2016269

[2.02-108]
- Bump version to fix build target
- Resolves: #2030359

[2.02-107]
- CVE-2021-3981 (Incorrect read permission in grub.cfg)
- Resolves: #2030359

Related CVEs

CVE-2021-3981

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	grub2-2.02-123.0.1.el8.src.rpm	65b3d59ee18e5bcbc72d089b6674e9f30a36c519d55ff1621455adb52122c141	-	ol8_aarch64_baseos_latest
	grub2-2.02-123.0.1.el8.src.rpm	65b3d59ee18e5bcbc72d089b6674e9f30a36c519d55ff1621455adb52122c141	-	ol8_aarch64_u6_baseos_base
	grub2-common-2.02-123.0.1.el8.noarch.rpm	0678c529fe70f482ba4ab1d607f883dc0ee257f8aae4525f39587a1da71a2803	-	ol8_aarch64_baseos_latest
	grub2-common-2.02-123.0.1.el8.noarch.rpm	0678c529fe70f482ba4ab1d607f883dc0ee257f8aae4525f39587a1da71a2803	-	ol8_aarch64_u6_baseos_base
	grub2-efi-aa64-2.02-123.0.1.el8.aarch64.rpm	a921def870e30a09662c2b5be4ac638dc0a5fea3b9c7eebf24745ef182067c79	-	ol8_aarch64_baseos_latest
	grub2-efi-aa64-2.02-123.0.1.el8.aarch64.rpm	a921def870e30a09662c2b5be4ac638dc0a5fea3b9c7eebf24745ef182067c79	-	ol8_aarch64_u6_baseos_base
	grub2-efi-aa64-cdboot-2.02-123.0.1.el8.aarch64.rpm	6d64ee3bfc811ea6d6aea586b1a44cf64062d4746e315c4768d92cc507cc6484	-	ol8_aarch64_baseos_latest
	grub2-efi-aa64-cdboot-2.02-123.0.1.el8.aarch64.rpm	6d64ee3bfc811ea6d6aea586b1a44cf64062d4746e315c4768d92cc507cc6484	-	ol8_aarch64_u6_baseos_base
	grub2-efi-aa64-modules-2.02-123.0.1.el8.noarch.rpm	96ec78ff01f086b012822c8b18ad8bd3efd9bd5186ee69665340b786e87e5c31	-	ol8_aarch64_baseos_latest
	grub2-efi-aa64-modules-2.02-123.0.1.el8.noarch.rpm	96ec78ff01f086b012822c8b18ad8bd3efd9bd5186ee69665340b786e87e5c31	-	ol8_aarch64_u6_baseos_base
	grub2-efi-ia32-modules-2.02-123.0.1.el8.noarch.rpm	4c8aa4c0c73e67d5c4d96c9a1919e19008e61694c79e1a8dea05639f6ea8c501	-	ol8_aarch64_baseos_latest
	grub2-efi-ia32-modules-2.02-123.0.1.el8.noarch.rpm	4c8aa4c0c73e67d5c4d96c9a1919e19008e61694c79e1a8dea05639f6ea8c501	-	ol8_aarch64_u6_baseos_base
	grub2-efi-x64-modules-2.02-123.0.1.el8.noarch.rpm	33cea448e0be9d47602f4290c0b3d0cb91bc7a7fe07e5844614db0159218886a	-	ol8_aarch64_baseos_latest
	grub2-efi-x64-modules-2.02-123.0.1.el8.noarch.rpm	33cea448e0be9d47602f4290c0b3d0cb91bc7a7fe07e5844614db0159218886a	-	ol8_aarch64_u6_baseos_base
	grub2-pc-modules-2.02-123.0.1.el8.noarch.rpm	08a6e26588583d34ca79aaa96b1745cfb89bb891a21b3510a2d4ce14a6bf5e44	-	ol8_aarch64_baseos_latest
	grub2-pc-modules-2.02-123.0.1.el8.noarch.rpm	08a6e26588583d34ca79aaa96b1745cfb89bb891a21b3510a2d4ce14a6bf5e44	-	ol8_aarch64_u6_baseos_base
	grub2-tools-2.02-123.0.1.el8.aarch64.rpm	b4365b1809ff5eef9c6f4198a8d62e0e4a891b7090b2ccba612b4045a5c96896	-	ol8_aarch64_baseos_latest
	grub2-tools-2.02-123.0.1.el8.aarch64.rpm	b4365b1809ff5eef9c6f4198a8d62e0e4a891b7090b2ccba612b4045a5c96896	-	ol8_aarch64_u6_baseos_base
	grub2-tools-extra-2.02-123.0.1.el8.aarch64.rpm	8b32df0291f62f6be41e33c3042d5d6c3d6e0d2456187d1f776259ef3e509269	-	ol8_aarch64_baseos_latest
	grub2-tools-extra-2.02-123.0.1.el8.aarch64.rpm	8b32df0291f62f6be41e33c3042d5d6c3d6e0d2456187d1f776259ef3e509269	-	ol8_aarch64_u6_baseos_base
	grub2-tools-minimal-2.02-123.0.1.el8.aarch64.rpm	4a4215309bbb715ec4e1d4ed6024a07b78d333322e342a3d7e10fa4c2177c100	-	ol8_aarch64_baseos_latest
	grub2-tools-minimal-2.02-123.0.1.el8.aarch64.rpm	4a4215309bbb715ec4e1d4ed6024a07b78d333322e342a3d7e10fa4c2177c100	-	ol8_aarch64_u6_baseos_base

Oracle Linux 8 (x86_64)	grub2-2.02-123.0.1.el8.src.rpm	65b3d59ee18e5bcbc72d089b6674e9f30a36c519d55ff1621455adb52122c141	-	ol8_x86_64_baseos_latest
	grub2-2.02-123.0.1.el8.src.rpm	65b3d59ee18e5bcbc72d089b6674e9f30a36c519d55ff1621455adb52122c141	-	ol8_x86_64_u6_baseos_base
	grub2-common-2.02-123.0.1.el8.noarch.rpm	0678c529fe70f482ba4ab1d607f883dc0ee257f8aae4525f39587a1da71a2803	-	ol8_x86_64_baseos_latest
	grub2-common-2.02-123.0.1.el8.noarch.rpm	0678c529fe70f482ba4ab1d607f883dc0ee257f8aae4525f39587a1da71a2803	-	ol8_x86_64_u6_baseos_base
	grub2-efi-aa64-modules-2.02-123.0.1.el8.noarch.rpm	96ec78ff01f086b012822c8b18ad8bd3efd9bd5186ee69665340b786e87e5c31	-	ol8_x86_64_baseos_latest
	grub2-efi-aa64-modules-2.02-123.0.1.el8.noarch.rpm	96ec78ff01f086b012822c8b18ad8bd3efd9bd5186ee69665340b786e87e5c31	-	ol8_x86_64_u6_baseos_base
	grub2-efi-ia32-2.02-123.0.1.el8.x86_64.rpm	e4d7bfb02d1154eef99234fd97b454effeb8f5820f60ce5cf117c94f877e0fdc	-	ol8_x86_64_baseos_latest
	grub2-efi-ia32-2.02-123.0.1.el8.x86_64.rpm	e4d7bfb02d1154eef99234fd97b454effeb8f5820f60ce5cf117c94f877e0fdc	-	ol8_x86_64_u6_baseos_base
	grub2-efi-ia32-cdboot-2.02-123.0.1.el8.x86_64.rpm	5b302758474a3d66ec16b35f5dab17667ea088717db76ef3d9fb4fc10884f9dc	-	ol8_x86_64_baseos_latest
	grub2-efi-ia32-cdboot-2.02-123.0.1.el8.x86_64.rpm	5b302758474a3d66ec16b35f5dab17667ea088717db76ef3d9fb4fc10884f9dc	-	ol8_x86_64_u6_baseos_base
	grub2-efi-ia32-modules-2.02-123.0.1.el8.noarch.rpm	4c8aa4c0c73e67d5c4d96c9a1919e19008e61694c79e1a8dea05639f6ea8c501	-	ol8_x86_64_baseos_latest
	grub2-efi-ia32-modules-2.02-123.0.1.el8.noarch.rpm	4c8aa4c0c73e67d5c4d96c9a1919e19008e61694c79e1a8dea05639f6ea8c501	-	ol8_x86_64_u6_baseos_base
	grub2-efi-x64-2.02-123.0.1.el8.x86_64.rpm	8e1f695488cb77e9a86acceb8cf18308c68bb9f0c11929da29107c37af987bb6	-	ol8_x86_64_baseos_latest
	grub2-efi-x64-2.02-123.0.1.el8.x86_64.rpm	8e1f695488cb77e9a86acceb8cf18308c68bb9f0c11929da29107c37af987bb6	-	ol8_x86_64_u6_baseos_base
	grub2-efi-x64-cdboot-2.02-123.0.1.el8.x86_64.rpm	998adb37e113db27e741bdf53e5c291aaed37ac5426f57e8b73615bafc6ce92f	-	ol8_x86_64_baseos_latest
	grub2-efi-x64-cdboot-2.02-123.0.1.el8.x86_64.rpm	998adb37e113db27e741bdf53e5c291aaed37ac5426f57e8b73615bafc6ce92f	-	ol8_x86_64_u6_baseos_base
	grub2-efi-x64-modules-2.02-123.0.1.el8.noarch.rpm	33cea448e0be9d47602f4290c0b3d0cb91bc7a7fe07e5844614db0159218886a	-	ol8_x86_64_baseos_latest
	grub2-efi-x64-modules-2.02-123.0.1.el8.noarch.rpm	33cea448e0be9d47602f4290c0b3d0cb91bc7a7fe07e5844614db0159218886a	-	ol8_x86_64_u6_baseos_base
	grub2-pc-2.02-123.0.1.el8.x86_64.rpm	e2de917ec1c65f72b946310de0c1c8289bba87f0eba3c7c09ad89b2b86b5da67	-	ol8_x86_64_baseos_latest
	grub2-pc-2.02-123.0.1.el8.x86_64.rpm	e2de917ec1c65f72b946310de0c1c8289bba87f0eba3c7c09ad89b2b86b5da67	-	ol8_x86_64_u6_baseos_base
	grub2-pc-modules-2.02-123.0.1.el8.noarch.rpm	08a6e26588583d34ca79aaa96b1745cfb89bb891a21b3510a2d4ce14a6bf5e44	-	ol8_x86_64_baseos_latest
	grub2-pc-modules-2.02-123.0.1.el8.noarch.rpm	08a6e26588583d34ca79aaa96b1745cfb89bb891a21b3510a2d4ce14a6bf5e44	-	ol8_x86_64_u6_baseos_base
	grub2-tools-2.02-123.0.1.el8.x86_64.rpm	3e642a1217e4792ec1985d93a995e2acb84876cde6a9b500f30c14965f1200db	-	ol8_x86_64_baseos_latest
	grub2-tools-2.02-123.0.1.el8.x86_64.rpm	3e642a1217e4792ec1985d93a995e2acb84876cde6a9b500f30c14965f1200db	-	ol8_x86_64_u6_baseos_base
	grub2-tools-efi-2.02-123.0.1.el8.x86_64.rpm	505da978b4afc81e8dd068697809a29c0b5ac920a91351420592cdc85941f6de	-	ol8_x86_64_baseos_latest
	grub2-tools-efi-2.02-123.0.1.el8.x86_64.rpm	505da978b4afc81e8dd068697809a29c0b5ac920a91351420592cdc85941f6de	-	ol8_x86_64_u6_baseos_base
	grub2-tools-extra-2.02-123.0.1.el8.x86_64.rpm	f06d84a5478a5429276124041e11de37a7c4a755e2b57d3f4d71ec2ed073718c	-	ol8_x86_64_baseos_latest
	grub2-tools-extra-2.02-123.0.1.el8.x86_64.rpm	f06d84a5478a5429276124041e11de37a7c4a755e2b57d3f4d71ec2ed073718c	-	ol8_x86_64_u6_baseos_base
	grub2-tools-minimal-2.02-123.0.1.el8.x86_64.rpm	5e1b599934adaccb72c69c22ab439eb68bfc77c0f02715efa1a38fb6e3d5cb6e	-	ol8_x86_64_baseos_latest
	grub2-tools-minimal-2.02-123.0.1.el8.x86_64.rpm	5e1b599934adaccb72c69c22ab439eb68bfc77c0f02715efa1a38fb6e3d5cb6e	-	ol8_x86_64_u6_baseos_base

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691