Oval Definition:oval:org.opensuse.security:def:68976
Revision Date:2020-12-01Version:1
Title:Security update for grub2 (Important)
Description:

This update for grub2 fixes the following issues:

- CVE-2020-10713 (bsc#1168994) - CVE-2020-14308 CVE-2020-14309, CVE-2020-14310, CVE-2020-14311 (bsc#1173812) - CVE-2020-15706 (bsc#1174463) - CVE-2020-15707 (bsc#1174570)

- Use overflow checking primitives where the arithmetic expression for buffer allocations may include unvalidated data - Use grub_calloc for overflow check and return NULL when it would occur
Family:unixClass:patch
Status:Reference(s):1027519
1168994
1173812
1174463
1174570
1177950
1178591
CVE-2020-10713
CVE-2020-14308
CVE-2020-14309
CVE-2020-14310
CVE-2020-14311
CVE-2020-15706
CVE-2020-15707
CVE-2020-28368
Platform(s):SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed
  • AND Package Information
  • grub2-2.02-26.25 is installed
  • OR grub2-branding-upstream-2.02-26.25 is installed
  • BACK