Lucene search

K
suseSuseSUSE-SU-2015:2387-1
HistoryDec 29, 2015 - 12:13 p.m.

Security update for grub2 (important)

2015-12-2912:13:10
lists.opensuse.org
7

0.001 Low

EPSS

Percentile

43.5%

  • Fix buffer overflows when reading username and password. (bsc#956631,
    CVE-2015-8370)
    • Check MS-DOS header to find PE file header. (bsc#954126)
    • Use dirname for copying Xen kernel and initrd to esp. (bsc#955493)
    • Fix reading password by grub2-mkpasswd-pbdk2 without controlling tty.
      (bsc#954519)
    • Add luks, gcry_rijndael and gcry_sha1 to signed EFI image to support
      LUKS partition in default setup. (bsc#917427, bsc#955609)
    • Expand list of grub.cfg search path in PV Xen guests for systems
      installed on btrfs snapshots. (bsc#946148, bsc#952539)

0.001 Low

EPSS

Percentile

43.5%

Related for SUSE-SU-2015:2387-1