Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
centosCentOS ProjectCESA-2020:3217
HistoryJul 30, 2020 - 12:08 a.m.

grub2, mokutil, shim security update

2020-07-3000:08:50
CentOS Project
lists.centos.org
486

8.2 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

7.9 High

AI Score

Confidence

High

4.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.002 Low

EPSS

Percentile

60.4%

JSON

CentOS Errata and Security Advisory CESA-2020:3217

The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.

The shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments.

The fwupdate packages provide a service that allows session software to update device firmware.

Security Fix(es):

  • grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process (CVE-2020-10713)

  • grub2: grub_malloc does not validate allocation size allowing for arithmetic overflow and subsequent heap-based buffer overflow (CVE-2020-14308)

  • grub2: Integer overflow in grub_squash_read_symlink may lead to heap-based buffer overflow (CVE-2020-14309)

  • grub2: Integer overflow read_section_as_string may lead to heap-based buffer overflow (CVE-2020-14310)

  • grub2: Integer overflow in grub_ext2_read_link leads to heap-based buffer overflow (CVE-2020-14311)

  • grub2: Fail kernel validation without shim protocol (CVE-2020-15705)

  • grub2: Use-after-free redefining a function whilst the same function is already executing (CVE-2020-15706)

  • grub2: Integer overflow in initrd size handling (CVE-2020-15707)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

  • grub2 doesn’t handle relative paths correctly for UEFI HTTP Boot (BZ#1616395)

  • UEFI HTTP boot over IPv6 does not work (BZ#1732765)

Users of grub2 are advised to upgrade to these updated packages, which fix these bugs.

Merged security bulletin from advisories:
https://lists.centos.org/pipermail/centos-announce/2020-July/085905.html
https://lists.centos.org/pipermail/centos-announce/2020-July/085907.html
https://lists.centos.org/pipermail/centos-announce/2020-July/085908.html

Affected packages:
grub2
grub2-common
grub2-efi-ia32
grub2-efi-ia32-cdboot
grub2-efi-ia32-modules
grub2-efi-x64
grub2-efi-x64-cdboot
grub2-efi-x64-modules
grub2-i386-modules
grub2-pc
grub2-pc-modules
grub2-tools
grub2-tools-extra
grub2-tools-minimal
mokutil
shim-ia32
shim-unsigned-ia32
shim-unsigned-x64
shim-x64

Upstream details at:
https://access.redhat.com/errata/RHSA-2020:3217

OSVersionArchitecturePackageVersionFilename
CentOS7x86_64shim-unsigned-ia32< 15-7.el7_9shim-unsigned-ia32-15-7.el7_9.x86_64.rpm
CentOS7x86_64shim-unsigned-x64< 15-7.el7_9shim-unsigned-x64-15-7.el7_9.x86_64.rpm
CentOS7x86_64mokutil< 15-7.el7_9mokutil-15-7.el7_9.x86_64.rpm
CentOS7x86_64shim-ia32< 15-7.el7_9shim-ia32-15-7.el7_9.x86_64.rpm
CentOS7x86_64shim-x64< 15-7.el7_9shim-x64-15-7.el7_9.x86_64.rpm
CentOS7x86_64grub2< 2.02-0.86.el7.centosgrub2-2.02-0.86.el7.centos.x86_64.rpm
CentOS7noarchgrub2-common< 2.02-0.86.el7.centosgrub2-common-2.02-0.86.el7.centos.noarch.rpm
CentOS7x86_64grub2-efi-ia32< 2.02-0.86.el7.centosgrub2-efi-ia32-2.02-0.86.el7.centos.x86_64.rpm
CentOS7x86_64grub2-efi-ia32-cdboot< 2.02-0.86.el7.centosgrub2-efi-ia32-cdboot-2.02-0.86.el7.centos.x86_64.rpm
CentOS7noarchgrub2-efi-ia32-modules< 2.02-0.86.el7.centosgrub2-efi-ia32-modules-2.02-0.86.el7.centos.noarch.rpm
Rows per page:
1-10 of 191

Related

nessus 51
photon 5
fedora 2
redhat 9
qualysblog 1
openvas 38
oraclelinux 3
ubuntu 2
debian 1
f5 1
suse 4
osv 9
mageia 1
gentoo 1
ibm 2
mscve 1
hp 1
redos 1
ics 1
redhatcve 7
cbl_mariner 11
prion 8
alpinelinux 8
cve 8
ubuntucve 7
veracode 7
debiancve 7
lenovo 1
cisa 1
nessus
nessus
Photon OS 2.0: Grub2 PHSA-2020-2.0-0267
2020-08-01 00:00:00
Oracle Linux 7 : grub2 (ELSA-2020-5782)
2020-07-30 00:00:00
RHEL 8 : grub2 (RHSA-2020:3223)
2020-07-30 00:00:00
photon
photon
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2020-2.0-0267
2020-07-30 00:00:00
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2020-1.0-0311
2020-07-30 00:00:00
Important Photon OS Security Update - PHSA-2020-0311
2020-07-30 00:00:00
fedora
fedora
[SECURITY] Fedora 31 Update: grub2-2.02-110.fc31
2020-09-27 01:05:37
[SECURITY] Fedora 32 Update: grub2-2.04-22.fc32
2020-09-14 13:26:52
redhat
redhat
(RHSA-2020:3275) Moderate: grub2 security and bug fix update
2020-08-03 10:37:39
(RHSA-2020:3271) Moderate: grub2 security and bug fix update
2020-08-03 10:36:06
(RHSA-2020:3276) Moderate: grub2 security and bug fix update
2020-08-03 11:17:09
qualysblog
qualysblog
GRUB2 Boothole Buffer Overflow Vulnerability (CVE-2020-10713) – Automatically Discover, Prioritize and Remediate Using Qualys VMDR®
2020-08-03 21:35:38
openvas
openvas
CentOS: Security Advisory for shim-unsigned-ia32 (CESA-2020:3217)
2020-07-30 00:00:00
CentOS: Security Advisory for grub2 (CESA-2020:3217)
2020-07-30 00:00:00
Ubuntu: Security Advisory (USN-4432-2)
2020-08-05 00:00:00
oraclelinux
oraclelinux
grub2 security update
2020-07-29 00:00:00
grub2 security update
2020-07-29 00:00:00
grub2 security update
2020-07-29 00:00:00
ubuntu
ubuntu
GRUB2 regression
2020-08-04 00:00:00
GRUB 2 vulnerabilities
2020-07-29 00:00:00
debian
debian
[SECURITY] [DSA 4735-1] grub2 security update
2020-07-29 16:59:52
f5
f5
K48187630 : Multiple grub2 vulnerabilities
2021-03-18 00:00:00
suse
suse
Security update for grub2 (important)
2020-08-08 00:00:00
Security update for grub2 (important)
2020-08-08 00:00:00
Security update for grub2 (important)
2020-08-29 00:00:00
osv
osv
grub2 - security update
2020-07-29 00:00:00
CVE-2020-14311
2020-07-31 22:15:11
CVE-2020-14309
2020-07-30 13:15:10
mageia
mageia
Updated grub2 packages fix security vulnerabilities
2021-07-09 01:43:19
gentoo
gentoo
GRUB: Multiple vulnerabilities
2021-04-30 00:00:00
ibm
ibm
Security Bulletin: IBM QRadar Network Packet Capture is vulnerable to Using Components with Known Vulnerabilities
2020-10-30 16:18:45
Security Bulletin: IBM Security Guardium is affected by multiple vulnerabilities
2023-12-19 17:14:04
mscve
mscve
Microsoft Guidance for Addressing Security Feature Bypass in GRUB
2020-07-29 07:00:00
hp
hp
HPSBHF03678 rev. 2 - GRUB2 Bootloader Arbitrary Code Execution
2020-07-25 00:00:00
redos
redos
ROS-20220920-01
2022-09-20 00:00:00
ics
ics
Hitachi Energy APM Edge (Update A)
2022-10-18 12:00:00
redhatcve
redhatcve
CVE-2020-14309
2020-07-29 17:06:12
CVE-2020-14311
2020-07-29 17:06:16
CVE-2020-14310
2020-07-29 17:06:12
cbl_mariner
cbl_mariner
CVE-2020-14308 affecting package grub2 2.06~rc1-10
2021-05-06 23:56:52
CVE-2020-14310 affecting package grub2 2.06~rc1-7
2022-04-26 20:17:11
CVE-2020-14311 affecting package grub2 2.06~rc1-7
2022-04-26 20:17:11
prion
prion
Heap overflow
2020-07-31 22:15:00
Buffer overflow
2020-07-29 20:15:00
Heap overflow
2020-07-31 22:15:00
alpinelinux
alpinelinux
CVE-2020-14309
2020-07-30 13:15:00
CVE-2020-14310
2020-07-31 22:15:00
CVE-2020-15707
2020-07-29 18:15:00
cve
cve
CVE-2020-15707
2020-07-29 18:15:00
CVE-2020-14310
2020-07-31 22:15:00
CVE-2020-14311
2020-07-31 22:15:00
ubuntucve
ubuntucve
CVE-2020-15707
2020-07-29 00:00:00
CVE-2020-14310
2020-07-29 00:00:00
CVE-2020-14311
2020-07-29 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-07-30 02:02:34
Denial Of Service (DoS)
2020-07-30 02:02:33
Denial Of Service (DoS)
2020-07-30 02:02:32
debiancve
debiancve
CVE-2020-14310
2020-07-31 22:15:00
CVE-2020-14311
2020-07-31 22:15:00
CVE-2020-14309
2020-07-30 13:15:00
lenovo
lenovo
GRUB2 Vulnerability – AKA
2020-07-30 15:15:08
cisa
cisa
GNU GRUB2 Vulnerability
2020-07-30 00:00:00

8.2 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

7.9 High

AI Score

Confidence

High

4.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.002 Low

EPSS

Percentile

60.4%

JSON
Related for CESA-2020:3217
nessus51photon5fedora2redhat9qualysblog1openvas38oraclelinux3ubuntu2debian1f51suse4osv9mageia1gentoo1ibm2mscve1hp1redos1ics1redhatcve7cbl_mariner11prion8alpinelinux8cve8ubuntucve7veracode7debiancve7lenovo1cisa1