(RHSA-2020:0335) Moderate: grub2 security update

2020-02-0412:38:47

access.redhat.com

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

4.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

0.0004 Low

EPSS

Percentile

5.2%

JSON

The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.

Security Fix(es):

grub2: grub2-set-bootflag utility causes grubenv corruption rendering the system non-bootable (CVE-2019-14865)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

OSVersionArchitecturePackageVersionFilename
RedHat8ppc64legrub2-debugsource< 2.02-78.el8_1.1grub2-debugsource-2.02-78.el8_1.1.ppc64le.rpm
RedHat8ppc64legrub2-ppc64le< 2.02-78.el8_1.1grub2-ppc64le-2.02-78.el8_1.1.ppc64le.rpm
RedHat8noarchgrub2-efi-aa64-modules< 2.02-78.el8_1.1grub2-efi-aa64-modules-2.02-78.el8_1.1.noarch.rpm
RedHat8aarch64grub2-tools-minimal< 2.02-78.el8_1.1grub2-tools-minimal-2.02-78.el8_1.1.aarch64.rpm
RedHat8ppc64legrub2-tools-minimal< 2.02-78.el8_1.1grub2-tools-minimal-2.02-78.el8_1.1.ppc64le.rpm
RedHat8x86_64grub2-tools-debuginfo< 2.02-78.el8_1.1grub2-tools-debuginfo-2.02-78.el8_1.1.x86_64.rpm
RedHat8noarchgrub2-pc-modules< 2.02-78.el8_1.1grub2-pc-modules-2.02-78.el8_1.1.noarch.rpm
RedHat8noarchgrub2-efi-ia32-modules< 2.02-78.el8_1.1grub2-efi-ia32-modules-2.02-78.el8_1.1.noarch.rpm
RedHat8x86_64grub2-efi-ia32< 2.02-78.el8_1.1grub2-efi-ia32-2.02-78.el8_1.1.x86_64.rpm
RedHat8x86_64grub2-efi-x64-cdboot< 2.02-78.el8_1.1grub2-efi-x64-cdboot-2.02-78.el8_1.1.x86_64.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	8	ppc64le	grub2-debugsource	< 2.02-78.el8_1.1	grub2-debugsource-2.02-78.el8_1.1.ppc64le.rpm
RedHat	8	ppc64le	grub2-ppc64le	< 2.02-78.el8_1.1	grub2-ppc64le-2.02-78.el8_1.1.ppc64le.rpm
RedHat	8	noarch	grub2-efi-aa64-modules	< 2.02-78.el8_1.1	grub2-efi-aa64-modules-2.02-78.el8_1.1.noarch.rpm
RedHat	8	aarch64	grub2-tools-minimal	< 2.02-78.el8_1.1	grub2-tools-minimal-2.02-78.el8_1.1.aarch64.rpm
RedHat	8	ppc64le	grub2-tools-minimal	< 2.02-78.el8_1.1	grub2-tools-minimal-2.02-78.el8_1.1.ppc64le.rpm
RedHat	8	x86_64	grub2-tools-debuginfo	< 2.02-78.el8_1.1	grub2-tools-debuginfo-2.02-78.el8_1.1.x86_64.rpm
RedHat	8	noarch	grub2-pc-modules	< 2.02-78.el8_1.1	grub2-pc-modules-2.02-78.el8_1.1.noarch.rpm
RedHat	8	noarch	grub2-efi-ia32-modules	< 2.02-78.el8_1.1	grub2-efi-ia32-modules-2.02-78.el8_1.1.noarch.rpm
RedHat	8	x86_64	grub2-efi-ia32	< 2.02-78.el8_1.1	grub2-efi-ia32-2.02-78.el8_1.1.x86_64.rpm
RedHat	8	x86_64	grub2-efi-x64-cdboot	< 2.02-78.el8_1.1	grub2-efi-x64-cdboot-2.02-78.el8_1.1.x86_64.rpm