grub2, mokutil, shim, and shim-unsigned-x64 security update

🗓️ 16 Jun 2022 13:17:13Reported by Rockylinux Product ErrataType

rocky

rocky🔗 errata.rockylinux.org👁 44 Views

Security update for grub2, mokutil, shim

Reporter	Title	Published	Views	Family All 504
IBM Security Bulletins	Security Bulletin: Security vulnerabilities have been fixed in IBM Security Verify Governance, Identity Manager virtual appliance component	20 Dec 202220:15	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Security Verify Access Appliance includes components with known vulnerabilities	12 Jan 202323:10	–	ibm
Tenable Nessus	Amazon Linux 2022 : grub2-common, grub2-efi-aa64, grub2-efi-aa64-cdboot (ALAS2022-2022-109)	7 Sep 202200:00	–	nessus
Tenable Nessus	Amazon Linux 2023 : grub2-common, grub2-efi-aa64, grub2-efi-aa64-cdboot (ALAS2023-2023-020)	21 Mar 202300:00	–	nessus
Tenable Nessus	Amazon Linux 2 : grub2 (ALAS-2023-2146)	20 Jul 202300:00	–	nessus
Tenable Nessus	Alibaba Cloud Linux 3 : 0134: grub2, mokutil, shim, and shim-unsigned-x64 (ALINUX3-SA-2022:0134)	14 May 202500:00	–	nessus
Tenable Nessus	Alibaba Cloud Linux 3 : 0164: grub2, mokutil, shim, and shim-unsigned-x64 (ALINUX3-SA-2022:0164)	14 May 202500:00	–	nessus
Tenable Nessus	AlmaLinux 9 : grub2, mokutil, shim, and shim-unsigned-x64 (ALSA-2022:5099)	16 Nov 202200:00	–	nessus
Tenable Nessus	Azure Linux 3.0 Security Update: shim / shim-unsigned-aarch64 (CVE-2022-28737)	10 Feb 202500:00	–	nessus
Tenable Nessus	CentOS 9 : shim-unsigned-x64-15.6-1.el9	29 Feb 202400:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
Rocky Linux	9	aarch64	mokutil	2:0.4.0-8.el9_0.1	mokutil-2:0.4.0-8.el9_0.1.aarch64.rpm
Rocky Linux	9	x86_64	mokutil	2:0.4.0-8.el9_0.1	mokutil-2:0.4.0-8.el9_0.1.x86_64.rpm
Rocky Linux	9	aarch64	mokutil-debuginfo	2:0.4.0-8.el9_0.1	mokutil-debuginfo-2:0.4.0-8.el9_0.1.aarch64.rpm
Rocky Linux	9	x86_64	mokutil-debuginfo	2:0.4.0-8.el9_0.1	mokutil-debuginfo-2:0.4.0-8.el9_0.1.x86_64.rpm
Rocky Linux	9	aarch64	mokutil-debugsource	2:0.4.0-8.el9_0.1	mokutil-debugsource-2:0.4.0-8.el9_0.1.aarch64.rpm
Rocky Linux	9	x86_64	mokutil-debugsource	2:0.4.0-8.el9_0.1	mokutil-debugsource-2:0.4.0-8.el9_0.1.x86_64.rpm
Rocky Linux	9	aarch64	shim-aa64	0:15.6-1.el9	shim-aa64-0:15.6-1.el9.aarch64.rpm
Rocky Linux	9	aarch64	shim-aa64	0:15.6-1.el9.rocky.0.1	shim-aa64-0:15.6-1.el9.rocky.0.1.aarch64.rpm
Rocky Linux	9	x86_64	shim-x64	0:15.6-1.el9	shim-x64-0:15.6-1.el9.x86_64.rpm
Rocky Linux	9	x86_64	shim-x64	0:15.6-1.el9.rocky.0.1	shim-x64-0:15.6-1.el9.rocky.0.1.x86_64.rpm

16 Jun 2022 13:17Current

6.9Medium risk

Vulners AI Score6.9

CVSS 26.9

CVSS 3.18.1

EPSS0.00151

SSVC

rocky linux 9 uefi boot loader cvss score cve list buffer overflow out-of-bounds write integer underflow jpeg image png image http headers use-after-free.