OVAL Reference oval:org.opensuse.security:def:69599

Oval Definition:

oval:org.opensuse.security:def:69599

Revision Date:	2021-03-02	Version:	1
Title:	Security update for grub2 (Important)
Description:	This update for grub2 fixes the following issues: grub2 now implements the new 'SBAT' method for SHIM based secure boot revocation. (bsc#1182057) Following security issues are fixed that can violate secure boot constraints: - CVE-2020-25632: Fixed a use-after-free in rmmod command (bsc#1176711) - CVE-2020-25647: Fixed an out-of-bound write in grub_usb_device_initialize() (bsc#1177883) - CVE-2020-27749: Fixed a stack buffer overflow in grub_parser_split_cmdline (bsc#1179264) - CVE-2020-27779, CVE-2020-14372: Disallow cutmem and acpi commands in secure boot mode (bsc#1179265 bsc#1175970) - CVE-2021-20225: Fixed a heap out-of-bounds write in short form option parser (bsc#1182262) - CVE-2021-20233: Fixed a heap out-of-bound write due to mis-calculation of space required for quoting (bsc#1182263)
Family:	unix	Class:	patch
Status:		Reference(s):	1101888 1101889 1175970 1176711 1177883 1179264 1179265 1182057 1182262 1182263 CVE-2018-14394 CVE-2018-14395 CVE-2019-18905 CVE-2020-14372 CVE-2020-25632 CVE-2020-25647 CVE-2020-27749 CVE-2020-27779 CVE-2021-20225 CVE-2021-20233 SUSE-SU-2019:1299-2 SUSE-SU-2021:0685-1
Platform(s):	SUSE Linux Enterprise Module for Basesystem 15 SP2 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Workstation Extension 15 SP1	Product(s):
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed AND Package Information autoyast2-4.2.37-1 is installed OR autoyast2-installation-4.2.37-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information grub2-2.02-19.66.1 is installed OR grub2-arm64-efi-2.02-19.66.1 is installed OR grub2-i386-pc-2.02-19.66.1 is installed OR grub2-powerpc-ieee1275-2.02-19.66.1 is installed OR grub2-s390x-emu-2.02-19.66.1 is installed OR grub2-snapper-plugin-2.02-19.66.1 is installed OR grub2-systemd-sleep-plugin-2.02-19.66.1 is installed OR grub2-x86_64-efi-2.02-19.66.1 is installed OR grub2-x86_64-xen-2.02-19.66.1 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information ffmpeg-3.4.2-4.17 is installed OR libavcodec-devel-3.4.2-4.17 is installed OR libavformat-devel-3.4.2-4.17 is installed OR libavformat57-3.4.2-4.17 is installed OR libavresample-devel-3.4.2-4.17 is installed OR libavresample3-3.4.2-4.17 is installed

BACK