Oval Definition:oval:org.opensuse.security:def:69107
Revision Date:2021-03-02Version:1
Title:Security update for grub2 (Important)
Description:

This update for grub2 fixes the following issues:

grub2 implements the new 'SBAT' method for SHIM based secure boot revocation. (bsc#1182057)

- CVE-2020-25632: Fixed a use-after-free in rmmod command (bsc#1176711) - CVE-2020-25647: Fixed an out-of-bound write in grub_usb_device_initialize() (bsc#1177883) - CVE-2020-27749: Fixed a stack buffer overflow in grub_parser_split_cmdline (bsc#1179264) - CVE-2020-27779, CVE-2020-14372: Disallow cutmem and acpi commands in secure boot mode (bsc#1179265 bsc#1175970) - CVE-2021-20225: Fixed a heap out-of-bounds write in short form option parser (bsc#1182262) - CVE-2021-20233: Fixed a heap out-of-bound write due to mis-calculation of space required for quoting (bsc#1182263)
Family:unixClass:patch
Status:Reference(s):1051510
1055117
1071995
1083647
1083710
1102247
1103991
1103992
1104745
1109837
1111666
1112374
1119222
1123080
1127034
1127315
1127611
1129770
1130972
1133021
1134090
1134097
1134390
1134399
1135335
1135642
1136217
1136342
1136460
1136461
1136462
1136467
1137458
1137534
1137535
1137584
1137609
1137811
1137827
1138874
1139358
1139619
1140133
1140139
1140322
1140559
1140652
1140676
1140903
1140945
1140948
1141312
1141401
1141402
1141452
1141453
1141454
1141478
1141558
1142023
1142052
1142083
1142112
1142115
1142119
1142220
1142221
1142254
1142350
1142351
1142354
1142359
1142450
1142623
1142673
1142701
1142868
1143003
1143045
1143105
1143185
1143189
1143191
1143209
1143507
1160968
1162972
1175970
1176711
1177883
1179264
1179265
1182057
1182262
1182263
CVE-2018-20855
CVE-2019-1125
CVE-2019-11810
CVE-2019-13631
CVE-2019-13648
CVE-2019-14283
CVE-2019-14284
CVE-2019-4732
CVE-2020-14372
CVE-2020-25632
CVE-2020-25647
CVE-2020-2583
CVE-2020-2593
CVE-2020-2604
CVE-2020-2659
CVE-2020-27749
CVE-2020-27779
CVE-2021-20225
CVE-2021-20233
SUSE-SU-2019:2073-1
SUSE-SU-2020:0466-1
SUSE-SU-2021:0683-1
Platform(s):SUSE Linux Enterprise High Performance Computing 15 SP2
SUSE Linux Enterprise Module for Live Patching 15 SP1
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1
SUSE Linux Enterprise Module for Server Applications 15 SP2
SUSE Linux Enterprise Server 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE Linux Enterprise Storage 7
SUSE Manager Proxy 4.1
SUSE Manager Server 4.1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed
  • AND Package Information
  • java-1_8_0-ibm-1.8.0_sr6.5-3.33 is installed
  • OR java-1_8_0-ibm-32bit-1.8.0_sr6.5-3.33 is installed
  • OR java-1_8_0-ibm-demo-1.8.0_sr6.5-3.33 is installed
  • OR java-1_8_0-ibm-devel-32bit-1.8.0_sr6.5-3.33 is installed
  • OR java-1_8_0-ibm-src-1.8.0_sr6.5-3.33 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed
  • AND Package Information
  • kernel-default-4.12.14-197.15 is installed
  • OR kernel-default-livepatch-4.12.14-197.15 is installed
  • OR kernel-default-livepatch-devel-4.12.14-197.15 is installed
  • OR kernel-livepatch-4_12_14-197_15-default-1-3.5 is installed
  • OR kernel-livepatch-SLE15-SP1_Update_4-1-3.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed
  • AND grub2-x86_64-xen-2.04-9.34.1 is installed
    • BACK