| Revision Date: | 2021-03-02 | Version: | 1 |
| Title: | Security update for grub2 (Important) |
| Description: |
This update for grub2 fixes the following issues:
grub2 implements the new 'SBAT' method for SHIM based secure boot revocation. (bsc#1182057)
- CVE-2020-25632: Fixed a use-after-free in rmmod command (bsc#1176711) - CVE-2020-25647: Fixed an out-of-bound write in grub_usb_device_initialize() (bsc#1177883) - CVE-2020-27749: Fixed a stack buffer overflow in grub_parser_split_cmdline (bsc#1179264) - CVE-2020-27779, CVE-2020-14372: Disallow cutmem and acpi commands in secure boot mode (bsc#1179265 bsc#1175970) - CVE-2021-20225: Fixed a heap out-of-bounds write in short form option parser (bsc#1182262) - CVE-2021-20233: Fixed a heap out-of-bound write due to mis-calculation of space required for quoting (bsc#1182263)
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 1175970
1176711
1177883
1179264
1179265
1182057
1182262
1182263
CVE-2009-1885
CVE-2010-2252
CVE-2010-4000
CVE-2011-1000
CVE-2011-1526
CVE-2011-4862
CVE-2012-2369
CVE-2012-4929
CVE-2013-1431
CVE-2013-2142
CVE-2013-7447
CVE-2013-7447
CVE-2014-0250
CVE-2014-0791
CVE-2014-2977
CVE-2014-2978
CVE-2014-4877
CVE-2014-5044
CVE-2014-8104
CVE-2015-0252
CVE-2015-2059
CVE-2015-5276
CVE-2015-8833
CVE-2016-0729
CVE-2016-1856
CVE-2016-1857
CVE-2016-2099
CVE-2016-4463
CVE-2016-4590
CVE-2016-4591
CVE-2016-4622
CVE-2016-4624
CVE-2016-4971
CVE-2016-5104
CVE-2016-5180
CVE-2016-6329
CVE-2016-6855
CVE-2016-7098
CVE-2017-11671
CVE-2017-2834
CVE-2017-2835
CVE-2017-2836
CVE-2017-2837
CVE-2017-2838
CVE-2017-2839
CVE-2017-6508
CVE-2017-7478
CVE-2017-7479
CVE-2017-7508
CVE-2017-7520
CVE-2017-7521
CVE-2020-14372
CVE-2020-25632
CVE-2020-25647
CVE-2020-27749
CVE-2020-27779
CVE-2021-20225
CVE-2021-20233
|
| Platform(s): | openSUSE 13.1
openSUSE 13.1 NonFree
openSUSE 13.2
SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5
SUSE Linux Enterprise Build System Kit 12
SUSE Linux Enterprise Build System Kit 12 SP1
SUSE Linux Enterprise Build System Kit 12 SP2
SUSE Linux Enterprise Build System Kit 12 SP3
SUSE Linux Enterprise Build System Kit 12 SP4
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise for SAP 12
SUSE Linux Enterprise for SAP 12 SP1
SUSE Linux Enterprise for SAP 12 SP2
SUSE Linux Enterprise High Availability 12
SUSE Linux Enterprise High Availability 12 SP1
SUSE Linux Enterprise High Availability 12 SP2
SUSE Linux Enterprise High Availability 12 SP3
SUSE Linux Enterprise High Availability 12 SP4
SUSE Linux Enterprise High Availability 12 SP5
SUSE Linux Enterprise High Performance Computing 12 SP5
SUSE Linux Enterprise Live Patching 12
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
SUSE Linux Enterprise Real Time Extension 12 SP1
SUSE Linux Enterprise Real Time Extension 12 SP2
SUSE Linux Enterprise Server 11 SP1
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP2-LTSS
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
SUSE Linux Enterprise Server for SAP Applications 12 SP2
SUSE Linux Enterprise Server for VMWare 11 SP2
SUSE Linux Enterprise Server for VMWare 11 SP3
SUSE Linux Enterprise Software Development Kit 11 SP3
SUSE Linux Enterprise Software Development Kit 11 SP4
SUSE Linux Enterprise Software Development Kit 12
SUSE Linux Enterprise Software Development Kit 12 SP1
SUSE Linux Enterprise Software Development Kit 12 SP2
SUSE Linux Enterprise Software Development Kit 12 SP3
SUSE Linux Enterprise Workstation Extension 12
SUSE Linux Enterprise Workstation Extension 12 SP1
SUSE Linux Enterprise Workstation Extension 12 SP2
SUSE Linux Enterprise Workstation Extension 12 SP3
SUSE Linux Enterprise Workstation Extension 12 SP4
| Product(s): | |
| Definition Synopsis |
| SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND Package Information
python-glanceclient-0.15.0-3.1 is installed
OR python-keystoneclient-1.0.0-19.1 is installed
OR python-keystoneclient-doc-1.0.0-19.1 is installed
OR python-keystonemiddleware-1.2.0-4.1 is installed
OR python-novaclient-2.20.0-6.1 is installed
OR python-novaclient-doc-2.20.0-6.1 is installed
OR python-swiftclient-2.3.1-3.1 is installed
OR python-swiftclient-doc-2.3.1-3.1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Build System Kit 12 is installed
AND Package Information
libreoffice-4.3.5.2-10 is installed
OR libreoffice-sdk-4.3.5.2-10 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Build System Kit 12 SP1 is installed
AND kernel-zfcpdump-3.12.62-60.62 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Build System Kit 12 SP2 is installed
AND kernel-zfcpdump-4.4.59-92.24 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Build System Kit 12 SP3 is installed
AND kernel-zfcpdump-4.4.82-6.3 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Build System Kit 12 SP4 is installed
AND Package Information
cups-1.7.5-20.20 is installed
OR cups-ddk-1.7.5-20.20 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 12 is installed
AND telepathy-gabble-0.18.1-3 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 12 SP1 is installed
AND Package Information
DirectFB-1.7.1-4 is installed
OR lib++dfb-1_7-1-1.7.1-4 is installed
OR libdirectfb-1_7-1-1.7.1-4 is installed
OR libdirectfb-1_7-1-32bit-1.7.1-4 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 12 SP3 is installed
AND Package Information
gnome-shell-3.20.4-76 is installed
OR gnome-shell-browser-plugin-3.20.4-76 is installed
OR gnome-shell-calendar-3.20.4-76 is installed
OR gnome-shell-lang-3.20.4-76 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 12 SP4 is installed
AND Package Information
cpp48-4.8.5-31.17 is installed
OR gcc48-4.8.5-31.17 is installed
OR gcc48-32bit-4.8.5-31.17 is installed
OR gcc48-c++-4.8.5-31.17 is installed
OR gcc48-gij-4.8.5-31.17 is installed
OR gcc48-gij-32bit-4.8.5-31.17 is installed
OR gcc48-info-4.8.5-31.17 is installed
OR libasan0-4.8.5-31.17 is installed
OR libasan0-32bit-4.8.5-31.17 is installed
OR libgcj48-4.8.5-31.17 is installed
OR libgcj48-32bit-4.8.5-31.17 is installed
OR libgcj48-jar-4.8.5-31.17 is installed
OR libgcj_bc1-4.8.5-31.17 is installed
OR libstdc++48-devel-4.8.5-31.17 is installed
OR libstdc++48-devel-32bit-4.8.5-31.17 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise for SAP 12 is installed
AND Package Information
compat-libldap-2_3-0-2.3.37-16.1 is installed
OR openldap2-2.4.39-16.1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise for SAP 12 SP1 is installed
AND Package Information
openvpn-2.3.8-16.17.1 is installed
OR openvpn-auth-pam-plugin-2.3.8-16.17.1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise for SAP 12 SP2 is installed
AND Package Information
compat-openssl098-0.9.8j-105.1 is installed
OR libopenssl0_9_8-0.9.8j-105.1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise High Availability 12 is installed
AND Package Information
conntrack-tools-1.4.2-5 is installed
OR libnetfilter_cthelper-1.0.0-7 is installed
OR libnetfilter_cthelper0-1.0.0-7 is installed
OR libnetfilter_cttimeout-1.0.0-9 is installed
OR libnetfilter_cttimeout1-1.0.0-9 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise High Availability 12 SP1 is installed
AND Package Information
ctdb-4.2.4-28.14 is installed
OR samba-4.2.4-28.14 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise High Availability 12 SP2 is installed
AND ctdb-4.4.2-29 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise High Availability 12 SP3 is installed
AND haproxy-1.6.11-10 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise High Availability 12 SP4 is installed
AND libpcreposix0-8.39-8.3 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise High Availability 12 SP5 is installed
AND libpcreposix0-8.39-8.3 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise High Performance Computing 12 SP5 is installed
AND Package Information
bash-4.3-83.23 is installed
OR bash-doc-4.3-83.23 is installed
OR libreadline6-6.3-83.23 is installed
OR libreadline6-32bit-6.3-83.23 is installed
OR readline-doc-6.3-83.23 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Live Patching 12 is installed
AND Package Information
kgraft-patch-3_12_39-47-default-1-2 is installed
OR kgraft-patch-3_12_39-47-xen-1-2 is installed
OR kgraft-patch-SLE12_Update_4-1-2 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Real Time Extension 12 SP1 is installed
AND Package Information
kernel-compute-3.12.67-60.27.1 is installed
OR kernel-compute-base-3.12.67-60.27.1 is installed
OR kernel-compute-devel-3.12.67-60.27.1 is installed
OR kernel-compute_debug-3.12.67-60.27.1 is installed
OR kernel-compute_debug-devel-3.12.67-60.27.1 is installed
OR kernel-devel-rt-3.12.67-60.27.1 is installed
OR kernel-rt-3.12.67-60.27.1 is installed
OR kernel-rt-base-3.12.67-60.27.1 is installed
OR kernel-rt-devel-3.12.67-60.27.1 is installed
OR kernel-rt_debug-3.12.67-60.27.1 is installed
OR kernel-rt_debug-devel-3.12.67-60.27.1 is installed
OR kernel-source-rt-3.12.67-60.27.1 is installed
OR kernel-syms-rt-3.12.67-60.27.1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Real Time Extension 12 SP2 is installed
AND Package Information
cluster-md-kmp-rt-4.4.74-7.10.1 is installed
OR cluster-network-kmp-rt-4.4.74-7.10.1 is installed
OR dlm-kmp-rt-4.4.74-7.10.1 is installed
OR gfs2-kmp-rt-4.4.74-7.10.1 is installed
OR kernel-devel-rt-4.4.74-7.10.1 is installed
OR kernel-rt-4.4.74-7.10.1 is installed
OR kernel-rt-base-4.4.74-7.10.1 is installed
OR kernel-rt-devel-4.4.74-7.10.1 is installed
OR kernel-rt_debug-4.4.74-7.10.1 is installed
OR kernel-rt_debug-devel-4.4.74-7.10.1 is installed
OR kernel-source-rt-4.4.74-7.10.1 is installed
OR kernel-syms-rt-4.4.74-7.10.1 is installed
OR ocfs2-kmp-rt-4.4.74-7.10.1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 11 SP1 is installed
AND Package Information
PackageKit-0.3.14-2.12.105 is installed
OR PackageKit-lang-0.3.14-2.12.105 is installed
OR hal-0.5.12-23.40.5 is installed
OR hal-32bit-0.5.12-23.40.5 is installed
OR hal-doc-0.5.12-23.40.6 is installed
OR hal-x86-0.5.12-23.40.5 is installed
OR libpackagekit-glib10-0.3.14-2.12.105 is installed
OR yast2-core-2.17.35-0.2.17 is installed
|
| Definition Synopsis |
| Release Information
SUSE Linux Enterprise Server 11 SP2 is installed
AND
xorg-x11-libXrender-7.4-1.16.1 is installed
OR xorg-x11-libXrender-32bit-7.4-1.16.1 is installed
OR xorg-x11-libXrender-x86-7.4-1.16.1 is installed
OR Package Information
SUSE Linux Enterprise Server for VMWare 11 SP2 is installed
AND
xorg-x11-libXrender-7.4-1.16.1 is installed
OR xorg-x11-libXrender-32bit-7.4-1.16.1 is installed
OR xorg-x11-libXrender-x86-7.4-1.16.1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 11 SP2 is installed
AND gzip-1.3.12-69.19.1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 11 SP2-LTSS is installed
AND Package Information
MozillaFirefox-24.7.0esr-0.3.1 is installed
OR MozillaFirefox-translations-24.7.0esr-0.3.1 is installed
OR libfreebl3-3.16.2-0.3.1 is installed
OR libfreebl3-32bit-3.16.2-0.3.1 is installed
OR mozilla-nss-3.16.2-0.3.1 is installed
OR mozilla-nss-32bit-3.16.2-0.3.1 is installed
OR mozilla-nss-devel-3.16.2-0.3.1 is installed
OR mozilla-nss-tools-3.16.2-0.3.1 is installed
|
| Definition Synopsis |
| Release Information
SUSE Linux Enterprise Server 11 SP3 is installed
AND
libmysql55client18-5.5.46-0.14.1 is installed
OR libmysql55client18-32bit-5.5.46-0.14.1 is installed
OR libmysql55client18-x86-5.5.46-0.14.1 is installed
OR libmysql55client_r18-5.5.46-0.14.1 is installed
OR mysql-5.5.46-0.14.1 is installed
OR mysql-client-5.5.46-0.14.1 is installed
OR mysql-tools-5.5.46-0.14.1 is installed
OR Package Information
SUSE Linux Enterprise Server for VMWare 11 SP3 is installed
AND
libmysql55client18-5.5.46-0.14.1 is installed
OR libmysql55client18-32bit-5.5.46-0.14.1 is installed
OR libmysql55client18-x86-5.5.46-0.14.1 is installed
OR libmysql55client_r18-5.5.46-0.14.1 is installed
OR mysql-5.5.46-0.14.1 is installed
OR mysql-client-5.5.46-0.14.1 is installed
OR mysql-tools-5.5.46-0.14.1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 11 SP3 is installed
AND LibVNCServer-0.9.1-154.24 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 11 SP4 is installed
AND Package Information
ant-1.7.1-20.11.1 is installed
OR ant-trax-1.7.1-16.11.1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 is installed
AND Package Information
cpio-2.11-26 is installed
OR cpio-lang-2.11-26 is installed
OR tar-1.27.1-2 is installed
OR tar-lang-1.27.1-2 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP1 is installed
AND Package Information
bzip2-1.0.6-27 is installed
OR bzip2-doc-1.0.6-27 is installed
OR libbz2-1-1.0.6-27 is installed
OR libbz2-1-32bit-1.0.6-27 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP2 is installed
AND Package Information
aaa_base-13.2+git20140911.61c1681-28 is installed
OR aaa_base-extras-13.2+git20140911.61c1681-28 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP3 is installed
AND Package Information
apache-commons-daemon-1.0.15-6 is installed
OR apache-commons-daemon-javadoc-1.0.15-6 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP4 is installed
AND Package Information
xen-4.11.0_08-1 is installed
OR xen-doc-html-4.11.0_08-1 is installed
OR xen-libs-4.11.0_08-1 is installed
OR xen-libs-32bit-4.11.0_08-1 is installed
OR xen-tools-4.11.0_08-1 is installed
OR xen-tools-domU-4.11.0_08-1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed
AND Package Information
avahi-0.6.32-30 is installed
OR avahi-lang-0.6.32-30 is installed
OR avahi-utils-0.6.32-30 is installed
OR libavahi-client3-0.6.32-30 is installed
OR libavahi-common3-0.6.32-30 is installed
OR libavahi-core7-0.6.32-30 is installed
OR libdns_sd-0.6.32-30 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed
AND Package Information
kernel-firmware-20170530-21.22 is installed
OR ucode-amd-20170530-21.22 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Software Development Kit 11 SP3 is installed
AND Package Information
php53-5.3.17-48.1 is installed
OR php53-devel-5.3.17-48.1 is installed
OR php53-imap-5.3.17-48.1 is installed
OR php53-posix-5.3.17-48.1 is installed
OR php53-readline-5.3.17-48.1 is installed
OR php53-sockets-5.3.17-48.1 is installed
OR php53-sqlite-5.3.17-48.1 is installed
OR php53-tidy-5.3.17-48.1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Software Development Kit 11 SP4 is installed
AND Package Information
PackageKit-devel-0.3.14-2.30.11 is installed
OR hal-devel-0.5.12-23.76.1 is installed
OR libpackagekit-glib10-devel-0.3.14-2.30.11 is installed
OR libpackagekit-qt10-0.3.14-2.30.11 is installed
OR libpackagekit-qt10-devel-0.3.14-2.30.11 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Software Development Kit 12 is installed
AND Package Information
FastCGI-2.4.0-167 is installed
OR perl-FastCGI-2.4.0-167 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Software Development Kit 12 SP1 is installed
AND Package Information
DirectFB-devel-1.7.1-4 is installed
OR lib++dfb-devel-1.7.1-4 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Software Development Kit 12 SP2 is installed
AND Package Information
avahi-compat-howl-devel-0.6.32-30 is installed
OR avahi-compat-mDNSResponder-devel-0.6.32-30 is installed
OR libavahi-devel-0.6.32-30 is installed
OR libhowl0-0.6.32-30 is installed
OR python-avahi-0.6.32-30 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Software Development Kit 12 SP3 is installed
AND Package Information
ImageMagick-6.8.8.1-70 is installed
OR ImageMagick-devel-6.8.8.1-70 is installed
OR libMagick++-6_Q16-3-6.8.8.1-70 is installed
OR libMagick++-devel-6.8.8.1-70 is installed
OR perl-PerlMagick-6.8.8.1-70 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Workstation Extension 12 is installed
AND Package Information
evolution-data-server-3.10.4-5.11 is installed
OR evolution-data-server-lang-3.10.4-5.11 is installed
OR libcamel-1_2-45-3.10.4-5.11 is installed
OR libcamel-1_2-45-32bit-3.10.4-5.11 is installed
OR libebackend-1_2-7-3.10.4-5.11 is installed
OR libebackend-1_2-7-32bit-3.10.4-5.11 is installed
OR libebook-1_2-14-3.10.4-5.11 is installed
OR libebook-1_2-14-32bit-3.10.4-5.11 is installed
OR libebook-contacts-1_2-0-3.10.4-5.11 is installed
OR libebook-contacts-1_2-0-32bit-3.10.4-5.11 is installed
OR libecal-1_2-16-3.10.4-5.11 is installed
OR libecal-1_2-16-32bit-3.10.4-5.11 is installed
OR libedata-book-1_2-20-3.10.4-5.11 is installed
OR libedata-book-1_2-20-32bit-3.10.4-5.11 is installed
OR libedata-cal-1_2-23-3.10.4-5.11 is installed
OR libedata-cal-1_2-23-32bit-3.10.4-5.11 is installed
OR libedataserver-1_2-18-3.10.4-5.11 is installed
OR libedataserver-1_2-18-32bit-3.10.4-5.11 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Workstation Extension 12 SP1 is installed
AND Package Information
libtag1-32bit-1.9.1-1 is installed
OR libtag_c0-32bit-1.9.1-1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Workstation Extension 12 SP2 is installed
AND argyllcms-1.6.3-3 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Workstation Extension 12 SP3 is installed
AND cyrus-sasl-digestmd5-32bit-2.1.26-7 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Workstation Extension 12 SP4 is installed
AND Package Information
NetworkManager-1.0.12-13.6 is installed
OR NetworkManager-lang-1.0.12-13.6 is installed
OR typelib-1_0-NM-1_0-1.0.12-13.6 is installed
|