(RHSA-2022:8900) Important: grub2 security update

2022-12-0811:26:33

access.redhat.com

8.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

5.1 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

0.001 Low

EPSS

Percentile

26.3%

JSON

The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.

Security Fix(es):

grub2: Integer underflow in grub_net_recv_ip4_packets (CVE-2022-28733)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

OSVersionArchitecturePackageVersionFilename
RedHat7noarchgrub2-ppc-modules< 2.02-0.87.el7_9.11grub2-ppc-modules-2.02-0.87.el7_9.11.noarch.rpm
RedHat7ppc64legrub2-tools-minimal< 2.02-0.87.el7_9.11grub2-tools-minimal-2.02-0.87.el7_9.11.ppc64le.rpm
RedHat7noarchgrub2-efi-ia32-modules< 2.02-0.87.el7_9.11grub2-efi-ia32-modules-2.02-0.87.el7_9.11.noarch.rpm
RedHat7noarchgrub2-ppc64-modules< 2.02-0.87.el7_9.11grub2-ppc64-modules-2.02-0.87.el7_9.11.noarch.rpm
RedHat7noarchgrub2-ppc64le-modules< 2.02-0.87.el7_9.11grub2-ppc64le-modules-2.02-0.87.el7_9.11.noarch.rpm
RedHat7x86_64grub2-efi-ia32-cdboot< 2.02-0.87.el7_9.11grub2-efi-ia32-cdboot-2.02-0.87.el7_9.11.x86_64.rpm
RedHat7ppc64grub2-ppc64< 2.02-0.87.el7_9.11grub2-ppc64-2.02-0.87.el7_9.11.ppc64.rpm
RedHat7x86_64grub2-pc< 2.02-0.87.el7_9.11grub2-pc-2.02-0.87.el7_9.11.x86_64.rpm
RedHat7x86_64grub2-efi-ia32< 2.02-0.87.el7_9.11grub2-efi-ia32-2.02-0.87.el7_9.11.x86_64.rpm
RedHat7x86_64grub2< 2.02-0.87.el7_9.11grub2-2.02-0.87.el7_9.11.x86_64.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	7	noarch	grub2-ppc-modules	< 2.02-0.87.el7_9.11	grub2-ppc-modules-2.02-0.87.el7_9.11.noarch.rpm
RedHat	7	ppc64le	grub2-tools-minimal	< 2.02-0.87.el7_9.11	grub2-tools-minimal-2.02-0.87.el7_9.11.ppc64le.rpm
RedHat	7	noarch	grub2-efi-ia32-modules	< 2.02-0.87.el7_9.11	grub2-efi-ia32-modules-2.02-0.87.el7_9.11.noarch.rpm
RedHat	7	noarch	grub2-ppc64-modules	< 2.02-0.87.el7_9.11	grub2-ppc64-modules-2.02-0.87.el7_9.11.noarch.rpm
RedHat	7	noarch	grub2-ppc64le-modules	< 2.02-0.87.el7_9.11	grub2-ppc64le-modules-2.02-0.87.el7_9.11.noarch.rpm
RedHat	7	x86_64	grub2-efi-ia32-cdboot	< 2.02-0.87.el7_9.11	grub2-efi-ia32-cdboot-2.02-0.87.el7_9.11.x86_64.rpm
RedHat	7	ppc64	grub2-ppc64	< 2.02-0.87.el7_9.11	grub2-ppc64-2.02-0.87.el7_9.11.ppc64.rpm
RedHat	7	x86_64	grub2-pc	< 2.02-0.87.el7_9.11	grub2-pc-2.02-0.87.el7_9.11.x86_64.rpm
RedHat	7	x86_64	grub2-efi-ia32	< 2.02-0.87.el7_9.11	grub2-efi-ia32-2.02-0.87.el7_9.11.x86_64.rpm
RedHat	7	x86_64	grub2	< 2.02-0.87.el7_9.11	grub2-2.02-0.87.el7_9.11.x86_64.rpm