Lucene search
RedHatRHSA-2023:0047HistoryJan 09, 2023 - 2:22 p.m.
(RHSA-2023:0047) Moderate: grub2 security update
2023-01-0914:22:15
access.redhat.com
15
0.001 Low
EPSS
Percentile
22.8%
The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.
Security Fix(es):
-
grub2: Buffer overflow in grub_font_construct_glyph() can lead to out-of-bound write and possible secure boot bypass (CVE-2022-2601)
-
grub2: Heap based out-of-bounds write when redering certain unicode sequences (CVE-2022-3775)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 8 | x86_64 | grub2-tools-extra-debuginfo | < 2.02-99.el8_4.10 | grub2-tools-extra-debuginfo-2.02-99.el8_4.10.x86_64.rpm |
| RedHat | 8 | ppc64le | grub2-tools | < 2.02-99.el8_4.10 | grub2-tools-2.02-99.el8_4.10.ppc64le.rpm |
| RedHat | 8 | x86_64 | grub2-tools-minimal-debuginfo | < 2.02-99.el8_4.10 | grub2-tools-minimal-debuginfo-2.02-99.el8_4.10.x86_64.rpm |
| RedHat | 8 | x86_64 | grub2-tools | < 2.02-99.el8_4.10 | grub2-tools-2.02-99.el8_4.10.x86_64.rpm |
| RedHat | 8 | aarch64 | grub2-tools | < 2.02-99.el8_4.10 | grub2-tools-2.02-99.el8_4.10.aarch64.rpm |
| RedHat | 8 | aarch64 | grub2-tools-extra | < 2.02-99.el8_4.10 | grub2-tools-extra-2.02-99.el8_4.10.aarch64.rpm |
| RedHat | 8 | aarch64 | grub2-efi-aa64-cdboot | < 2.02-99.el8_4.10 | grub2-efi-aa64-cdboot-2.02-99.el8_4.10.aarch64.rpm |
| RedHat | 8 | aarch64 | grub2-tools-minimal | < 2.02-99.el8_4.10 | grub2-tools-minimal-2.02-99.el8_4.10.aarch64.rpm |
| RedHat | 8 | ppc64le | grub2-tools-extra | < 2.02-99.el8_4.10 | grub2-tools-extra-2.02-99.el8_4.10.ppc64le.rpm |
| RedHat | 8 | x86_64 | grub2-efi-x64 | < 2.02-99.el8_4.10 | grub2-efi-x64-2.02-99.el8_4.10.x86_64.rpm |
Related
nessus
nessus
RHEL 9 : grub2 (RHSA-2023:0752)
2023-02-14 00:00:00
AlmaLinux 9 : grub2 (ALSA-2023:0752)
2023-02-14 00:00:00
SUSE SLES12 Security Update : grub2 (SUSE-SU-2022:4144-1)
2022-11-22 00:00:00
oraclelinux
oraclelinux
grub2 security update
2023-01-12 00:00:00
grub2 security update
2023-06-13 00:00:00
grub2 security update
2023-01-25 00:00:00
almalinux
almalinux
Moderate: grub2 security update
2023-01-09 00:00:00
Moderate: grub2 security update
2023-02-14 00:00:00
rocky
rocky
grub2 security update
2023-02-16 06:35:52
grub2 security update
2023-01-09 14:23:31
redhat
redhat
(RHSA-2023:0049) Moderate: grub2 security update
2023-01-09 14:23:31
(RHSA-2022:8800) Moderate: grub2 security update
2022-12-06 08:49:16
(RHSA-2022:8978) Moderate: grub2 security and bug fix update
2022-12-13 15:31:13
openvas
openvas
Debian: Security Advisory (DSA-5280-1)
2022-11-16 00:00:00
Fedora: Security Advisory for grub2 (FEDORA-2022-7ce9378e90)
2022-12-02 00:00:00
Huawei EulerOS: Security Advisory for grub2 (EulerOS-SA-2023-1468)
2023-03-09 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2024-2348
2024-02-20 08:52:02
Advisory ROSA-SA-2024-2341
2024-02-14 10:25:29
osv
osv
Moderate: grub2 security update
2023-02-16 06:35:52
Moderate: grub2 security update
2023-01-09 14:23:31
grub2 - security update
2022-11-16 00:00:00
debian
debian
[SECURITY] [DLA 3190-1] grub2 security update
2022-11-16 09:12:34
[SECURITY] [DLA 3190-2] grub2 security update
2022-12-10 08:23:17
[SECURITY] [DSA 5280-1] grub2 security update
2022-11-15 19:50:30
ibm
ibm
gentoo
gentoo
GRUB: Multiple Vulnerabilities
2023-11-25 00:00:00
fedora
fedora
[SECURITY] Fedora 37 Update: grub2-2.06-63.fc37
2022-11-18 01:18:26
[SECURITY] Fedora 36 Update: grub2-2.06-57.fc36
2022-11-27 01:37:59
[SECURITY] Fedora 35 Update: grub2-2.06-14.fc35
2022-12-01 01:39:11
redos
redos
ROS-20240403-05
2024-04-03 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2022-4.0-0303
2022-12-21 00:00:00
Important Photon OS Security Update - PHSA-2022-0303
2022-12-21 00:00:00
Important Photon OS Security Update - PHSA-2022-0550
2022-12-21 00:00:00
cbl_mariner
cbl_mariner
CVE-2022-3775 affecting package grub2 for versions less than 2.06-10
2023-06-27 20:56:13
CVE-2022-3775 affecting package grub2 for versions less than 2.06-14
2024-03-19 17:21:46
CVE-2022-3775 affecting package grub2 2.06~rc1-9
2023-03-02 04:18:34
ubuntucve
ubuntucve
CVE-2022-3775
2022-12-19 00:00:00
CVE-2022-2601
2022-12-14 00:00:00
cve
cve
CVE-2022-3775
2022-12-19 20:15:00
CVE-2022-2601
2022-12-14 21:15:00
debiancve
debiancve
CVE-2022-3775
2022-12-19 20:15:00
CVE-2022-2601
2022-12-14 21:15:00
veracode
veracode
Denial Of Service (DoS)
2022-11-20 23:05:07
Buffer Overflow
2022-11-23 05:01:42
redhatcve
redhatcve
CVE-2022-3775
2022-11-15 18:43:55
CVE-2022-2601
2022-11-15 18:40:37
prion
prion
Heap overflow
2022-12-19 20:15:00
Heap overflow
2022-12-14 21:15:00
cvelist
cvelist
CVE-2022-3775
2022-12-19 00:00:00
CVE-2022-2601
2022-12-14 00:00:00
amazon
amazon
Important: grub2
2023-07-17 17:40:00
ubuntu
ubuntu
GRUB2 vulnerabilities
2023-09-08 00:00:00
hp
hp
HP ThinPro 8.0 SP 7 Security Updates
2024-01-26 00:00:00
HP ThinPro 8.0 SP 8 Security Updates
2024-03-01 00:00:00
avleonov
avleonov