ELSA-2023-0752

ULN >
Oracle Linux Errata repository >
ELSA-2023-0752

ELSA-2023-0752 - grub2 security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2023-06-13

Description

[2.06-46.0.4.el9_1.3]
- Bump SBAT metadata for grub to 3 [Orabug: 34872719]
- Fix CVE-2022-3775 [Orabug: 34871953]
- Enable signing for aarch64 EFI
- Fix signing certificate names
- Enable back btrfs grub module for EFI pre-built image [Orabug: 34360986]
- Replaced bugzilla.oracle.com references [Orabug: 34202300]
- Update provided certificate version to 202204 [JIRA: OLDIS-16371]
- Various coverity fixes [JIRA: OLDIS-16371]
- bump SBAT generation
- Update bug url [Orabug: 34202300]
- Revert provided certificate version back to 202102 [JIRA: OLDIS-16371]
- Update signing certificate [JIRA: OLDIS-16371]
- fix SBAT data [JIRA: OLDIS-16371]
- Update requires [JIRA: OLDIS-16371]
- Rebuild for SecureBoot signatures [Orabug: 33801813]
- Do not add shim and grub certificate deps for aarch64 packages [Orabug: 32670033]
- Update Oracle SBAT data [Orabug: 32670033]
- Use new signing certificate [Orabug: 32670033]
- honor /etc/sysconfig/kernel DEFAULTKERNEL setting for BLS [Orabug: 30643497]
- set EFIDIR as redhat for additional grub2 tools [Orabug: 29875597]
- Update upstream references [Orabug: 26388226]
- Insert Unbreakable Enterprise Kernel text into BLS config file [Orabug: 29417955]
- Put 'with' in menuentry instead of 'using' [Orabug: 18504756]
- Use different titles for UEK and RHCK kernels [Orabug: 18504756]

[2.06-46.el9_1.3]
- Give up on redhat-sb-certs
- Resolves: CVE-2022-2601

[2.06-46.el9_1.2]
- CVE update (actually 2.06-49)
- Resolves: CVE-2022-2601

Related CVEs

CVE-2022-3775

CVE-2022-2601

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 9 (aarch64)	grub2-2.06-46.0.4.el9_1.3.src.rpm	a3c565b58e322a51833c3a82dbb3f84b168b6bc00528a7db158daf163a85042f	-	ol9_aarch64_baseos_latest
	grub2-2.06-46.0.4.el9_1.3.src.rpm	a3c565b58e322a51833c3a82dbb3f84b168b6bc00528a7db158daf163a85042f	-	ol9_aarch64_u1_baseos_patch
	grub2-common-2.06-46.0.4.el9_1.3.noarch.rpm	5ecf7188f8965640ef0ba2c6945d6ece853f92f4c37979cf542fb68c0590cbf2	-	ol9_aarch64_baseos_latest
	grub2-common-2.06-46.0.4.el9_1.3.noarch.rpm	5ecf7188f8965640ef0ba2c6945d6ece853f92f4c37979cf542fb68c0590cbf2	-	ol9_aarch64_u1_baseos_patch
	grub2-efi-aa64-2.06-46.0.4.el9_1.3.aarch64.rpm	fbb9e6834baac95d37fcfa31f07d7e97e55eaeb4a1750f72651d0a4a5e1e5e59	-	ol9_aarch64_baseos_latest
	grub2-efi-aa64-2.06-46.0.4.el9_1.3.aarch64.rpm	fbb9e6834baac95d37fcfa31f07d7e97e55eaeb4a1750f72651d0a4a5e1e5e59	-	ol9_aarch64_u1_baseos_patch
	grub2-efi-aa64-cdboot-2.06-46.0.4.el9_1.3.aarch64.rpm	b6344f866df96605b5634ec7c4f9ffd05c1b2d9c7df72d940104c7f609c3078b	-	ol9_aarch64_baseos_latest
	grub2-efi-aa64-cdboot-2.06-46.0.4.el9_1.3.aarch64.rpm	b6344f866df96605b5634ec7c4f9ffd05c1b2d9c7df72d940104c7f609c3078b	-	ol9_aarch64_u1_baseos_patch
	grub2-efi-aa64-modules-2.06-46.0.4.el9_1.3.noarch.rpm	5dfc37cbeaee5421668b5499d5d43e3a7392d1be5706bc1f79a3492fe2c0e728	-	ol9_aarch64_baseos_latest
	grub2-efi-aa64-modules-2.06-46.0.4.el9_1.3.noarch.rpm	5dfc37cbeaee5421668b5499d5d43e3a7392d1be5706bc1f79a3492fe2c0e728	-	ol9_aarch64_u1_baseos_patch
	grub2-efi-x64-modules-2.06-46.0.4.el9_1.3.noarch.rpm	5f0655ed9eee0b765888534cfe1dc5096b33acdfecea3a86894eddcfa701eb69	-	ol9_aarch64_baseos_latest
	grub2-efi-x64-modules-2.06-46.0.4.el9_1.3.noarch.rpm	5f0655ed9eee0b765888534cfe1dc5096b33acdfecea3a86894eddcfa701eb69	-	ol9_aarch64_u1_baseos_patch
	grub2-tools-2.06-46.0.4.el9_1.3.aarch64.rpm	ba7f7a8102dd6039525bbf9fe520c0a24bf9fa010aa4bdc98f32cd8d374e541f	-	ol9_aarch64_baseos_latest
	grub2-tools-2.06-46.0.4.el9_1.3.aarch64.rpm	ba7f7a8102dd6039525bbf9fe520c0a24bf9fa010aa4bdc98f32cd8d374e541f	-	ol9_aarch64_u1_baseos_patch
	grub2-tools-extra-2.06-46.0.4.el9_1.3.aarch64.rpm	f1f4e43031371a04cd5959a6ec7cb35726c763108177ddc1a38a9e8fd4625ccb	-	ol9_aarch64_baseos_latest
	grub2-tools-extra-2.06-46.0.4.el9_1.3.aarch64.rpm	f1f4e43031371a04cd5959a6ec7cb35726c763108177ddc1a38a9e8fd4625ccb	-	ol9_aarch64_u1_baseos_patch
	grub2-tools-minimal-2.06-46.0.4.el9_1.3.aarch64.rpm	337bf8814275e820fe3d5c792b3fceb4f07a8236de45ce5253410e458e7d8e71	-	ol9_aarch64_baseos_latest
	grub2-tools-minimal-2.06-46.0.4.el9_1.3.aarch64.rpm	337bf8814275e820fe3d5c792b3fceb4f07a8236de45ce5253410e458e7d8e71	-	ol9_aarch64_u1_baseos_patch

Oracle Linux 9 (x86_64)	grub2-2.06-46.0.4.el9_1.3.src.rpm	a3c565b58e322a51833c3a82dbb3f84b168b6bc00528a7db158daf163a85042f	-	ol9_x86_64_baseos_latest
	grub2-2.06-46.0.4.el9_1.3.src.rpm	a3c565b58e322a51833c3a82dbb3f84b168b6bc00528a7db158daf163a85042f	-	ol9_x86_64_u1_baseos_patch
	grub2-common-2.06-46.0.4.el9_1.3.noarch.rpm	5ecf7188f8965640ef0ba2c6945d6ece853f92f4c37979cf542fb68c0590cbf2	-	ol9_x86_64_baseos_latest
	grub2-common-2.06-46.0.4.el9_1.3.noarch.rpm	5ecf7188f8965640ef0ba2c6945d6ece853f92f4c37979cf542fb68c0590cbf2	-	ol9_x86_64_u1_baseos_patch
	grub2-efi-aa64-modules-2.06-46.0.4.el9_1.3.noarch.rpm	5dfc37cbeaee5421668b5499d5d43e3a7392d1be5706bc1f79a3492fe2c0e728	-	ol9_x86_64_baseos_latest
	grub2-efi-aa64-modules-2.06-46.0.4.el9_1.3.noarch.rpm	5dfc37cbeaee5421668b5499d5d43e3a7392d1be5706bc1f79a3492fe2c0e728	-	ol9_x86_64_u1_baseos_patch
	grub2-efi-x64-2.06-46.0.4.el9_1.3.x86_64.rpm	7187a47adb25f8cb4eb578efbece73aaf4114e6698c03f9d02f993abb88fa912	-	ol9_x86_64_baseos_latest
	grub2-efi-x64-2.06-46.0.4.el9_1.3.x86_64.rpm	7187a47adb25f8cb4eb578efbece73aaf4114e6698c03f9d02f993abb88fa912	-	ol9_x86_64_u1_baseos_patch
	grub2-efi-x64-cdboot-2.06-46.0.4.el9_1.3.x86_64.rpm	6b0e02cc9b3f1cb8b8d97423b20a321671349cbdc78810919149de51c9fa12fb	-	ol9_x86_64_baseos_latest
	grub2-efi-x64-cdboot-2.06-46.0.4.el9_1.3.x86_64.rpm	6b0e02cc9b3f1cb8b8d97423b20a321671349cbdc78810919149de51c9fa12fb	-	ol9_x86_64_u1_baseos_patch
	grub2-efi-x64-modules-2.06-46.0.4.el9_1.3.noarch.rpm	5f0655ed9eee0b765888534cfe1dc5096b33acdfecea3a86894eddcfa701eb69	-	ol9_x86_64_baseos_latest
	grub2-efi-x64-modules-2.06-46.0.4.el9_1.3.noarch.rpm	5f0655ed9eee0b765888534cfe1dc5096b33acdfecea3a86894eddcfa701eb69	-	ol9_x86_64_u1_baseos_patch
	grub2-pc-2.06-46.0.4.el9_1.3.x86_64.rpm	39e02b7e7ec2775dc49ed57257cf2cef4201e0bf6dda7f05d12944fea277c31f	-	ol9_x86_64_baseos_latest
	grub2-pc-2.06-46.0.4.el9_1.3.x86_64.rpm	39e02b7e7ec2775dc49ed57257cf2cef4201e0bf6dda7f05d12944fea277c31f	-	ol9_x86_64_u1_baseos_patch
	grub2-pc-modules-2.06-46.0.4.el9_1.3.noarch.rpm	1449c2f8a5a9a987a98161a7eb0ee4b8eac2632426a3f7d6dc2b39966583fc62	-	ol9_x86_64_baseos_latest
	grub2-pc-modules-2.06-46.0.4.el9_1.3.noarch.rpm	1449c2f8a5a9a987a98161a7eb0ee4b8eac2632426a3f7d6dc2b39966583fc62	-	ol9_x86_64_u1_baseos_patch
	grub2-tools-2.06-46.0.4.el9_1.3.x86_64.rpm	48ed95e5c0053eb1a6b89c1f394039555aa5f407e4e12d267a547d84aa2edeb2	-	ol9_x86_64_baseos_latest
	grub2-tools-2.06-46.0.4.el9_1.3.x86_64.rpm	48ed95e5c0053eb1a6b89c1f394039555aa5f407e4e12d267a547d84aa2edeb2	-	ol9_x86_64_u1_baseos_patch
	grub2-tools-efi-2.06-46.0.4.el9_1.3.x86_64.rpm	8ce348dee5daca0256ef75441d68ad9ff01582341cee00f3f19d88c2159905d2	-	ol9_x86_64_baseos_latest
	grub2-tools-efi-2.06-46.0.4.el9_1.3.x86_64.rpm	8ce348dee5daca0256ef75441d68ad9ff01582341cee00f3f19d88c2159905d2	-	ol9_x86_64_u1_baseos_patch
	grub2-tools-extra-2.06-46.0.4.el9_1.3.x86_64.rpm	6c2f04a56eed6de8ae26b12b24a6a79eb74942a1894fd8b5c9e0233facbc1e9b	-	ol9_x86_64_baseos_latest
	grub2-tools-extra-2.06-46.0.4.el9_1.3.x86_64.rpm	6c2f04a56eed6de8ae26b12b24a6a79eb74942a1894fd8b5c9e0233facbc1e9b	-	ol9_x86_64_u1_baseos_patch
	grub2-tools-minimal-2.06-46.0.4.el9_1.3.x86_64.rpm	a4805e5ddeac5ca6cfdfbdcef601e1035db08d5042a053099a586d0c4559c57a	-	ol9_x86_64_baseos_latest
	grub2-tools-minimal-2.06-46.0.4.el9_1.3.x86_64.rpm	a4805e5ddeac5ca6cfdfbdcef601e1035db08d5042a053099a586d0c4559c57a	-	ol9_x86_64_u1_baseos_patch

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691