Oval Definition:oval:org.opensuse.security:def:67047
Revision Date:2021-03-02Version:1
Title:Security update for grub2 (Important)
Description:

This update for grub2 fixes the following issues:

grub2 implements the new 'SBAT' method for SHIM based secure boot revocation. (bsc#1182057)

- CVE-2020-25632: Fixed a use-after-free in rmmod command (bsc#1176711) - CVE-2020-25647: Fixed an out-of-bound write in grub_usb_device_initialize() (bsc#1177883) - CVE-2020-27749: Fixed a stack buffer overflow in grub_parser_split_cmdline (bsc#1179264) - CVE-2020-27779, CVE-2020-14372: Disallow cutmem and acpi commands in secure boot mode (bsc#1179265 bsc#1175970) - CVE-2021-20225: Fixed a heap out-of-bounds write in short form option parser (bsc#1182262) - CVE-2021-20233: Fixed a heap out-of-bound write due to mis-calculation of space required for quoting (bsc#1182263)
Family:unixClass:patch
Status:Reference(s):1172798
1172846
1173972
1174633
1174635
1174638
1174753
1174817
1175168
1175970
1176711
1177883
1179264
1179265
1182057
1182262
1182263
CVE-2020-13844
CVE-2020-14345
CVE-2020-14346
CVE-2020-14347
CVE-2020-14372
CVE-2020-25632
CVE-2020-25647
CVE-2020-27749
CVE-2020-27779
CVE-2021-20225
CVE-2021-20233
SUSE-SU-2020:2240-1
SUSE-SU-2020:2947-1
Platform(s):SUSE Linux Enterprise Module for Basesystem 15 SP2
SUSE Linux Enterprise Module for Development Tools 15 SP2
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed
  • AND Package Information
  • gcc10-10.2.1+git583-1.3 is installed
  • OR libada10-10.2.1+git583-1.3 is installed
  • OR libada10-32bit-10.2.1+git583-1.3 is installed
  • OR libasan6-10.2.1+git583-1.3 is installed
  • OR libasan6-32bit-10.2.1+git583-1.3 is installed
  • OR libatomic1-10.2.1+git583-1.3 is installed
  • OR libatomic1-32bit-10.2.1+git583-1.3 is installed
  • OR libgcc_s1-10.2.1+git583-1.3 is installed
  • OR libgcc_s1-32bit-10.2.1+git583-1.3 is installed
  • OR libgfortran5-10.2.1+git583-1.3 is installed
  • OR libgfortran5-32bit-10.2.1+git583-1.3 is installed
  • OR libgo16-10.2.1+git583-1.3 is installed
  • OR libgo16-32bit-10.2.1+git583-1.3 is installed
  • OR libgomp1-10.2.1+git583-1.3 is installed
  • OR libgomp1-32bit-10.2.1+git583-1.3 is installed
  • OR libitm1-10.2.1+git583-1.3 is installed
  • OR libitm1-32bit-10.2.1+git583-1.3 is installed
  • OR liblsan0-10.2.1+git583-1.3 is installed
  • OR libquadmath0-10.2.1+git583-1.3 is installed
  • OR libquadmath0-32bit-10.2.1+git583-1.3 is installed
  • OR libstdc++6-10.2.1+git583-1.3 is installed
  • OR libstdc++6-32bit-10.2.1+git583-1.3 is installed
  • OR libstdc++6-devel-gcc10-10.2.1+git583-1.3 is installed
  • OR libstdc++6-locale-10.2.1+git583-1.3 is installed
  • OR libstdc++6-pp-gcc10-10.2.1+git583-1.3 is installed
  • OR libstdc++6-pp-gcc10-32bit-10.2.1+git583-1.3 is installed
  • OR libtsan0-10.2.1+git583-1.3 is installed
  • OR libubsan1-10.2.1+git583-1.3 is installed
  • OR libubsan1-32bit-10.2.1+git583-1.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Development Tools 15 SP2 is installed
  • AND Package Information
  • xorg-x11-server-1.20.3-22.5 is installed
  • OR xorg-x11-server-sdk-1.20.3-22.5 is installed
    • BACK